1 /************************************************* 2 * Exim - an Internet mail transport agent * 3 *************************************************/ 4 5 /* Copyright (c) University of Cambridge 1995 - 2018 */ 6 /* Copyright (c) The Exim Maintainers 2020 */ 7 /* See the file NOTICE for conditions of use and distribution. */ 8 9 /* Almost all the global variables are defined together in this one header, so 10 that they are easy to find. However, those that are visible during the 11 compilation of the local_scan() function are defined separately in the 12 local_scan.h header file. */ 13 14 /* First put any specials that are required for some operating systems. */ 15 16 #ifdef NEED_H_ERRNO 17 extern int h_errno; 18 #endif 19 20 /* We need to be careful about width of int and atomicity in signal handlers, 21 especially with the rise of 64-bit systems breaking older assumptions. But 22 sig_atomic_t comes from signal.h so can't go into mytypes.h without including 23 signal support in local_scan, which seems precipitous. */ 24 typedef volatile sig_atomic_t SIGNAL_BOOL; 25 26 /* Now things that are present only when configured. */ 27 28 #ifdef EXIM_PERL 29 extern uschar *opt_perl_startup; /* Startup code for Perl interpreter */ 30 extern BOOL opt_perl_at_start; /* Start Perl interpreter at start */ 31 extern BOOL opt_perl_started; /* Set once interpreter started */ 32 extern BOOL opt_perl_taintmode; /* Enable taint mode in Perl */ 33 #endif 34 35 #ifdef EXPAND_DLFUNC 36 extern tree_node *dlobj_anchor; /* Tree of dynamically-loaded objects */ 37 #endif 38 39 #ifdef LOOKUP_IBASE 40 extern uschar *ibase_servers; 41 #endif 42 43 #ifdef LOOKUP_LDAP 44 extern uschar *eldap_ca_cert_dir; /* Directory with CA certificates */ 45 extern uschar *eldap_ca_cert_file; /* CA certificate file */ 46 extern uschar *eldap_cert_file; /* Certificate file */ 47 extern uschar *eldap_cert_key; /* Certificate key file */ 48 extern uschar *eldap_cipher_suite; /* Allowed cipher suite */ 49 extern uschar *eldap_default_servers; /* List of default servers */ 50 extern uschar *eldap_require_cert; /* Peer certificate checking strategy */ 51 extern BOOL eldap_start_tls; /* Use STARTTLS */ 52 extern int eldap_version; /* LDAP version */ 53 #endif 54 55 #ifdef LOOKUP_MYSQL 56 extern uschar *mysql_servers; /* List of servers and connect info */ 57 #endif 58 59 #ifdef LOOKUP_ORACLE 60 extern uschar *oracle_servers; /* List of servers and connect info */ 61 #endif 62 63 #ifdef LOOKUP_PGSQL 64 extern uschar *pgsql_servers; /* List of servers and connect info */ 65 #endif 66 67 #ifdef LOOKUP_REDIS 68 extern uschar *redis_servers; /* List of servers and connect info */ 69 #endif 70 71 #ifdef LOOKUP_SQLITE 72 extern uschar *sqlite_dbfile; /* Filname for database */ 73 extern int sqlite_lock_timeout; /* Internal lock waiting timeout */ 74 #endif 75 76 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES 77 extern BOOL move_frozen_messages; /* Get them out of the normal directory */ 78 #endif 79 80 #ifdef ALLOW_INSECURE_TAINTED_DATA 81 extern BOOL allow_insecure_tainted_data; 82 #endif 83 84 /* These variables are outside the #ifdef because it keeps the code less 85 cluttered in several places (e.g. during logging) if we can always refer to 86 them. Also, the tls_ variables are now always visible. */ 87 88 typedef struct { 89 client_conn_ctx active; /* fd/socket when in a TLS session, and ptr to TLS context */ 90 int bits; /* bits used in TLS session */ 91 BOOL certificate_verified; /* Client certificate verified */ 92 #ifdef SUPPORT_DANE 93 BOOL dane_verified; /* ... via DANE */ 94 int tlsa_usage; /* TLSA record(s) usage */ 95 #endif 96 uschar *cipher; /* Cipher used */ 97 const uschar *cipher_stdname; /* Cipher used, RFC version */ 98 const uschar *ver; /* TLS version */ 99 100 BOOL on_connect; /* For older MTAs that don't STARTTLS */ 101 uschar *on_connect_ports; /* Ports always tls-on-connect */ 102 void *ourcert; /* Certificate we presented, binary */ 103 void *peercert; /* Certificate of peer, binary */ 104 uschar *peerdn; /* DN from peer */ 105 uschar *sni; /* Server Name Indication */ 106 uschar *channelbinding; /* b64'd data identifying channel, for authenticators */ 107 enum { 108 OCSP_NOT_REQ=0, /* not requested */ 109 OCSP_NOT_RESP, /* no response to request */ 110 OCSP_VFY_NOT_TRIED, /* response not verified */ 111 OCSP_FAILED, /* verify failed */ 112 OCSP_VFIED /* verified */ 113 } ocsp; /* Stapled OCSP status */ 114 #ifndef DISABLE_TLS_RESUME 115 unsigned resumption; /* Session resumption */ 116 BOOL host_resumable:1; 117 BOOL ticket_received:1; 118 #endif 119 BOOL verify_override:1; /* certificate_verified only due to tls_try_verify_hosts */ 120 BOOL ext_master_secret:1; /* extended-master-secret was used */ 121 } tls_support; 122 extern tls_support tls_in; 123 extern tls_support tls_out; 124 125 #ifndef DISABLE_TLS 126 extern BOOL gnutls_compat_mode; /* Less security, more compatibility */ 127 extern BOOL gnutls_allow_auto_pkcs11; /* Let GnuTLS autoload PKCS11 modules */ 128 extern uschar *hosts_require_alpn; /* Mandatory ALPN successful nogitiation */ 129 extern uschar *openssl_options; /* OpenSSL compatibility options */ 130 extern const pcre *regex_STARTTLS; /* For recognizing STARTTLS settings */ 131 extern uschar *tls_alpn; /* ALPN names acceptable */ 132 extern uschar *tls_certificate; /* Certificate file */ 133 extern uschar *tls_crl; /* CRL File */ 134 extern int tls_dh_max_bits; /* don't accept higher lib suggestions */ 135 extern uschar *tls_dhparam; /* DH param file */ 136 extern uschar *tls_eccurve; /* EC curve */ 137 # ifndef DISABLE_OCSP 138 extern uschar *tls_ocsp_file; /* OCSP stapling proof file */ 139 # endif 140 extern uschar *tls_privatekey; /* Private key file */ 141 extern BOOL tls_remember_esmtp; /* For YAEB */ 142 extern uschar *tls_require_ciphers; /* So some can be avoided */ 143 # ifndef DISABLE_TLS_RESUME 144 extern uschar *tls_resumption_hosts; /* TLS session resumption */ 145 # endif 146 extern uschar *tls_try_verify_hosts; /* Optional client verification */ 147 extern uschar *tls_verify_certificates;/* Path for certificates to check */ 148 extern uschar *tls_verify_hosts; /* Mandatory client verification */ 149 extern int tls_watch_fd; /* for inotify of creds files */ 150 extern time_t tls_watch_trigger_time; /* non-0: triggered */ 151 #endif 152 extern uschar *tls_advertise_hosts; /* host for which TLS is advertised */ 153 154 extern uschar *dsn_envid; /* DSN envid string */ 155 extern int dsn_ret; /* DSN ret type*/ 156 extern const pcre *regex_DSN; /* For recognizing DSN settings */ 157 extern uschar *dsn_advertise_hosts; /* host for which TLS is advertised */ 158 159 /* Input-reading functions for messages, so we can use special ones for 160 incoming TCP/IP. */ 161 162 extern int (*lwr_receive_getc)(unsigned); 163 extern uschar * (*lwr_receive_getbuf)(unsigned *); 164 extern BOOL (*lwr_receive_hasc)(void); 165 extern int (*lwr_receive_ungetc)(int); 166 167 extern int (*receive_getc)(unsigned); 168 extern uschar * (*receive_getbuf)(unsigned *); 169 extern BOOL (*receive_hasc)(void); 170 extern void (*receive_get_cache)(unsigned); 171 extern int (*receive_ungetc)(int); 172 extern int (*receive_feof)(void); 173 extern int (*receive_ferror)(void); 174 extern BOOL (*receive_smtp_buffered)(void); 175 176 177 /* For clearing, saving, restoring address expansion variables. We have to have 178 the size of this vector set explicitly, because it is referenced from more than 179 one module. */ 180 181 extern const uschar **address_expansions[ADDRESS_EXPANSIONS_COUNT]; 182 183 /* Flags for which we don't need an address ever so can use a bitfield */ 184 185 extern struct global_flags { 186 BOOL acl_temp_details :1; /* TRUE to give details for 4xx error */ 187 BOOL active_local_from_check :1; /* For adding Sender: (switchable) */ 188 BOOL active_local_sender_retain :1; /* For keeping Sender: (switchable) */ 189 BOOL address_test_mode :1; /* True for -bt */ 190 BOOL admin_user :1; /* True if caller can do admin */ 191 BOOL allow_auth_unadvertised :1; /* As it says */ 192 BOOL allow_unqualified_recipient :1; /* For local messages */ /* As it says */ 193 BOOL allow_unqualified_sender :1; /* Reset for SMTP */ /* Ditto */ 194 BOOL authentication_local :1; /* TRUE if non-smtp (implicit authentication) */ 195 196 BOOL background_daemon :1; /* Set FALSE to keep in foreground */ 197 BOOL bdat_readers_wanted :1; /* BDAT-handling to be pushed on readfunc stack */ 198 199 BOOL chunking_offered :1; 200 BOOL config_changed :1; /* True if -C used */ 201 BOOL continue_more :1; /* Flag more addresses waiting */ 202 203 BOOL daemon_listen :1; /* True if listening required */ 204 BOOL debug_daemon :1; /* Debug the daemon process only */ 205 BOOL deliver_firsttime :1; /* True for first delivery attempt */ 206 BOOL deliver_force :1; /* TRUE if delivery was forced */ 207 BOOL deliver_freeze :1; /* TRUE if delivery is frozen */ 208 BOOL deliver_force_thaw :1; /* TRUE to force thaw in queue run */ 209 BOOL deliver_manual_thaw :1; /* TRUE if manually thawed */ 210 BOOL deliver_selectstring_regex :1; /* String is regex */ 211 BOOL deliver_selectstring_sender_regex :1; /* String is regex */ 212 BOOL disable_callout_flush :1; /* Don't flush before callouts */ 213 BOOL disable_delay_flush :1; /* Don't flush before "delay" in ACL */ 214 BOOL disable_logging :1; /* Disables log writing when TRUE */ 215 #ifndef DISABLE_DKIM 216 BOOL dkim_disable_verify :1; /* Set via ACL control statement. When set, DKIM verification is disabled for the current message */ 217 BOOL dkim_init_done :1; /* lazy-init status */ 218 #endif 219 #ifdef SUPPORT_DMARC 220 BOOL dmarc_has_been_checked :1; /* Global variable to check if test has been called yet */ 221 BOOL dmarc_disable_verify :1; /* Set via ACL control statement. When set, DMARC verification is disabled for the current message */ 222 BOOL dmarc_enable_forensic :1; /* Set via ACL control statement. When set, DMARC forensic reports are enabled for the current message */ 223 #endif 224 BOOL dont_deliver :1; /* TRUE for -N option */ 225 BOOL dot_ends :1; /* TRUE if "." ends non-SMTP input */ 226 227 BOOL enable_dollar_recipients :1; /* Make $recipients available */ 228 BOOL expand_string_forcedfail :1; /* TRUE if failure was "expected" */ 229 230 BOOL filter_running :1; /* TRUE while running a filter */ 231 232 BOOL header_rewritten :1; /* TRUE if header changed by router */ 233 BOOL helo_verified :1; /* True if HELO verified */ 234 BOOL helo_verify_failed :1; /* True if attempt failed */ 235 BOOL host_checking_callout :1; /* TRUE if real callout wanted */ 236 BOOL host_find_failed_syntax :1; /* DNS syntax check failure */ 237 238 BOOL inetd_wait_mode :1; /* Whether running in inetd wait mode */ 239 BOOL is_inetd :1; /* True for inetd calls */ 240 241 BOOL local_error_message :1; /* True if handling one of these */ 242 BOOL log_testing_mode :1; /* TRUE in various testing modes */ 243 244 #ifdef WITH_CONTENT_SCAN 245 BOOL no_mbox_unspool :1; /* don't unlink files in /scan directory */ 246 #endif 247 BOOL no_multiline_responses :1; /* For broken clients */ 248 249 BOOL parse_allow_group :1; /* Allow group syntax */ 250 BOOL parse_found_group :1; /* In the middle of a group */ 251 BOOL pipelining_enable :1; /* As it says */ 252 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS) 253 BOOL proxy_session_failed :1; /* TRUE if required proxy negotiation failed */ 254 #endif 255 256 BOOL queue_2stage :1; /* Run queue in 2-stage manner */ 257 BOOL queue_only_policy :1; /* ACL or local_scan wants queue_only */ 258 BOOL queue_run_first_delivery :1; /* If TRUE, first deliveries only */ 259 BOOL queue_run_force :1; /* TRUE to force during queue run */ 260 BOOL queue_run_local :1; /* Local deliveries only in queue run */ 261 BOOL queue_running :1; /* TRUE for queue running process and */ 262 BOOL queue_smtp :1; /* Disable all immediate SMTP (-odqs)*/ 263 264 BOOL really_exim :1; /* FALSE in utilities */ 265 BOOL receive_call_bombout :1; /* Flag for crashing log */ 266 BOOL recipients_discarded :1; /* By an ACL */ 267 BOOL running_in_test_harness :1; /*TRUE when running_status is patched */ 268 269 BOOL search_find_defer :1; /* Set TRUE if lookup deferred */ 270 BOOL sender_address_forced :1; /* Set by -f */ 271 BOOL sender_host_notsocket :1; /* Set for -bs and -bS */ 272 BOOL sender_host_unknown :1; /* TRUE for -bs and -bS except inetd */ 273 BOOL sender_local :1; /* TRUE for local senders */ 274 BOOL sender_name_forced :1; /* Set by -F */ 275 BOOL sender_set_untrusted :1; /* Sender set by untrusted caller */ 276 BOOL smtp_authenticated :1; /* Sending client has authenticated */ 277 #ifndef DISABLE_PIPE_CONNECT 278 BOOL smtp_in_early_pipe_advertised :1; /* server advertised PIPE_CONNECT */ 279 BOOL smtp_in_early_pipe_no_auth :1; /* too many authenticator names */ 280 BOOL smtp_in_early_pipe_used :1; /* client did send early data */ 281 #endif 282 BOOL smtp_in_pipelining_advertised :1; /* server advertised PIPELINING */ 283 BOOL smtp_in_pipelining_used :1; /* server noted client using PIPELINING */ 284 BOOL smtp_in_quit :1; /* server noted QUIT command */ 285 BOOL spool_file_wireformat :1; /* current -D file has CRLF rather than NL */ 286 BOOL submission_mode :1; /* Can be forced from ACL */ 287 BOOL suppress_local_fixups :1; /* Can be forced from ACL */ 288 BOOL suppress_local_fixups_default :1; /* former is reset to this; override with -G */ 289 BOOL synchronous_delivery :1; /* TRUE if -odi is set */ 290 BOOL system_filtering :1; /* TRUE when running system filter */ 291 292 BOOL taint_check_slow :1; /* malloc/mmap are not returning distinct ranges */ 293 BOOL testsuite_delays :1; /* interprocess sequencing delays, under testsuite */ 294 BOOL tcp_fastopen_ok :1; /* appears to be supported by kernel */ 295 BOOL tcp_in_fastopen :1; /* conn usefully used fastopen */ 296 BOOL tcp_in_fastopen_data :1; /* fastopen carried data */ 297 BOOL tcp_in_fastopen_logged :1; /* one-time logging */ 298 BOOL tcp_out_fastopen_logged :1; /* one-time logging */ 299 BOOL timestamps_utc :1; /* Use UTC for all times */ 300 BOOL transport_filter_timed_out :1; /* True if it did */ 301 BOOL trusted_caller :1; /* Caller is trusted */ 302 BOOL trusted_config :1; /* Configuration file is trusted */ 303 } f; 304 305 306 /* General global variables */ 307 308 extern BOOL accept_8bitmime; /* Allow *BITMIME incoming */ 309 extern uschar *add_environment; /* List of environment variables to add */ 310 extern header_line *acl_added_headers; /* Headers added by an ACL */ 311 extern tree_node *acl_anchor; /* Tree of named ACLs */ 312 extern uschar *acl_arg[9]; /* Argument to ACL call */ 313 extern int acl_narg; /* Number of arguments to ACL call */ 314 extern int acl_level; /* Nesting depth and debug indent */ 315 extern uschar *acl_not_smtp; /* ACL run for non-SMTP messages */ 316 #ifdef WITH_CONTENT_SCAN 317 extern uschar *acl_not_smtp_mime; /* For MIME parts of ditto */ 318 #endif 319 extern uschar *acl_not_smtp_start; /* ACL run at the beginning of a non-SMTP session */ 320 extern uschar *acl_removed_headers; /* Headers deleted by an ACL */ 321 extern uschar *acl_smtp_auth; /* ACL run for AUTH */ 322 extern uschar *acl_smtp_connect; /* ACL run on SMTP connection */ 323 extern uschar *acl_smtp_data; /* ACL run after DATA received */ 324 #ifndef DISABLE_PRDR 325 extern uschar *acl_smtp_data_prdr; /* ACL run after DATA received if in PRDR mode*/ 326 const extern pcre *regex_PRDR; /* For recognizing PRDR settings */ 327 #endif 328 #ifndef DISABLE_DKIM 329 extern uschar *acl_smtp_dkim; /* ACL run for DKIM signatures / domains */ 330 #endif 331 extern uschar *acl_smtp_etrn; /* ACL run for ETRN */ 332 extern uschar *acl_smtp_expn; /* ACL run for EXPN */ 333 extern uschar *acl_smtp_helo; /* ACL run for HELO/EHLO */ 334 extern uschar *acl_smtp_mail; /* ACL run for MAIL */ 335 extern uschar *acl_smtp_mailauth; /* ACL run for MAIL AUTH */ 336 #ifdef WITH_CONTENT_SCAN 337 extern uschar *acl_smtp_mime; /* ACL run after DATA, before acl_smtp_data, for each MIME part */ 338 #endif 339 extern uschar *acl_smtp_notquit; /* ACL run for disconnects */ 340 extern uschar *acl_smtp_predata; /* ACL run for DATA command */ 341 extern uschar *acl_smtp_quit; /* ACL run for QUIT */ 342 extern uschar *acl_smtp_rcpt; /* ACL run for RCPT */ 343 extern uschar *acl_smtp_starttls; /* ACL run for STARTTLS */ 344 extern uschar *acl_smtp_vrfy; /* ACL run for VRFY */ 345 extern tree_node *acl_var_c; /* ACL connection variables */ 346 extern tree_node *acl_var_m; /* ACL message variables */ 347 extern uschar *acl_verify_message; /* User message for verify failure */ 348 extern string_item *acl_warn_logged; /* Logged lines */ 349 extern uschar *acl_wherecodes[]; /* Response codes for ACL fails */ 350 extern uschar *acl_wherenames[]; /* Names for messages */ 351 extern address_item *addr_duplicate; /* Duplicate address list */ 352 extern address_item address_defaults; /* Default data for address item */ 353 extern uschar *address_file; /* Name of file when delivering to one */ 354 extern uschar *address_pipe; /* Pipe command when delivering to one */ 355 extern tree_node *addresslist_anchor; /* Tree of defined address lists */ 356 extern int addresslist_count; /* Number defined */ 357 extern gid_t *admin_groups; /* List of admin groups */ 358 extern BOOL allow_domain_literals; /* As it says */ 359 extern BOOL allow_mx_to_ip; /* Allow MX records to -> ip address */ 360 #ifdef EXPERIMENTAL_ARC 361 extern struct arc_set *arc_received; /* highest ARC instance evaluation struct */ 362 extern int arc_received_instance; /* highest ARC instance number in headers */ 363 extern int arc_oldest_pass; /* lowest passing instance number in headers */ 364 extern const uschar *arc_state; /* verification state */ 365 extern const uschar *arc_state_reason; 366 #endif 367 extern BOOL allow_utf8_domains; /* For experimenting */ 368 extern uschar *authenticated_fail_id; /* ID that failed authentication */ 369 extern uschar *authenticated_id; /* ID that was authenticated */ 370 extern uschar *authenticated_sender; /* From AUTH on MAIL */ 371 extern BOOL authentication_failed; /* TRUE if AUTH was tried and failed */ 372 extern uschar *auth_advertise_hosts; /* Only advertise to these */ 373 extern auth_info auths_available[]; /* Vector of available auth mechanisms */ 374 extern auth_instance *auths; /* Chain of instantiated auths */ 375 extern auth_instance auth_defaults; /* Default values */ 376 extern uschar *auth_defer_msg; /* Error message for log */ 377 extern uschar *auth_defer_user_msg; /* Error message for user */ 378 extern uschar *auth_vars[]; /* $authn variables */ 379 extern int auto_thaw; /* Auto-thaw interval */ 380 #ifdef WITH_CONTENT_SCAN 381 extern int av_failed; /* TRUE if the AV process failed */ 382 extern uschar *av_scanner; /* AntiVirus scanner to use for the malware condition */ 383 #endif 384 385 extern uschar *base62_chars; /* Table of base-62 characters */ 386 extern uschar *bi_command; /* Command for -bi option */ 387 extern uschar *big_buffer; /* Used for various temp things */ 388 extern int big_buffer_size; /* Current size (can expand) */ 389 #ifdef EXPERIMENTAL_BRIGHTMAIL 390 extern uschar *bmi_alt_location; /* expansion variable that contains the alternate location for the rcpt (available during routing) */ 391 extern uschar *bmi_base64_tracker_verdict; /* expansion variable with base-64 encoded OLD verdict string (available during routing) */ 392 extern uschar *bmi_base64_verdict; /* expansion variable with base-64 encoded verdict string (available during routing) */ 393 extern uschar *bmi_config_file; /* Brightmail config file */ 394 extern int bmi_deliver; /* Flag that determines if the message should be delivered to the rcpt (available during routing) */ 395 extern int bmi_run; /* Flag that determines if message should be run through Brightmail server */ 396 extern uschar *bmi_verdicts; /* BASE64-encoded verdicts with recipient lists */ 397 #endif 398 extern int bsmtp_transaction_linecount; /* Start of last transaction */ 399 extern int body_8bitmime; /* sender declared BODY= ; 7=7BIT, 8=8BITMIME */ 400 extern uschar *bounce_message_file; /* Template file */ 401 extern uschar *bounce_message_text; /* One-liner */ 402 extern uschar *bounce_recipient; /* When writing an errmsg */ 403 extern BOOL bounce_return_body; /* Include body in returned message */ 404 extern int bounce_return_linesize_limit; /* Max line length in return */ 405 extern BOOL bounce_return_message; /* Include message in bounce */ 406 extern int bounce_return_size_limit; /* Max amount to return */ 407 extern uschar *bounce_sender_authentication; /* AUTH address for bounces */ 408 409 extern uschar *callout_address; /* Address used for a malware/spamd/verify etc. callout */ 410 extern int callout_cache_domain_positive_expire; /* Time for positive domain callout cache records to expire */ 411 extern int callout_cache_domain_negative_expire; /* Time for negative domain callout cache records to expire */ 412 extern int callout_cache_positive_expire; /* Time for positive callout cache records to expire */ 413 extern int callout_cache_negative_expire; /* Time for negative callout cache records to expire */ 414 extern uschar *callout_random_local_part; /* Local part to be used to check if server called will accept any local part */ 415 extern uschar *check_dns_names_pattern;/* Regex for syntax check */ 416 extern int check_log_inodes; /* Minimum for message acceptance */ 417 extern int_eximarith_t check_log_space; /* Minimum for message acceptance */ 418 extern BOOL check_rfc2047_length; /* Check RFC 2047 encoded string length */ 419 extern int check_spool_inodes; /* Minimum for message acceptance */ 420 extern int_eximarith_t check_spool_space; /* Minimum for message acceptance */ 421 extern uschar *chunking_advertise_hosts; /* RFC 3030 CHUNKING */ 422 extern unsigned chunking_datasize; 423 extern unsigned chunking_data_left; 424 extern chunking_state_t chunking_state; 425 extern uschar *client_authenticator; /* Authenticator name used for smtp delivery */ 426 extern uschar *client_authenticated_id; /* "login" name used for SMTP AUTH */ 427 extern uschar *client_authenticated_sender; /* AUTH option to SMTP MAIL FROM (not yet used) */ 428 extern int clmacro_count; /* Number of command line macros */ 429 extern uschar *clmacros[]; /* Copy of them, for re-exec */ 430 extern BOOL commandline_checks_require_admin; /* belt and braces for insecure setups */ 431 extern int connection_max_messages;/* Max down one SMTP connection */ 432 extern FILE *config_file; /* Configuration file */ 433 extern const uschar *config_filename; /* Configuration file name */ 434 extern gid_t config_gid; /* Additional group owner */ 435 extern int config_lineno; /* Line number */ 436 extern uschar *config_main_filelist; /* List of possible config files */ 437 extern uschar *config_main_filename; /* File name actually used */ 438 extern uschar *config_main_directory; /* Directory where the main config file was found */ 439 extern uid_t config_uid; /* Additional owner */ 440 extern uschar *continue_proxy_cipher; /* TLS cipher for proxied continued delivery */ 441 extern BOOL continue_proxy_dane; /* proxied conn is DANE */ 442 extern uschar *continue_proxy_sni; /* proxied conn SNI */ 443 extern uschar *continue_hostname; /* Host for continued delivery */ 444 extern uschar *continue_host_address; /* IP address for ditto */ 445 extern int continue_sequence; /* Sequence num for continued delivery */ 446 extern uschar *continue_transport; /* Transport for continued delivery */ 447 #ifdef EXPERIMENTAL_ESMTP_LIMITS 448 extern unsigned continue_limit_mail; /* Peer advertised limit */ 449 extern unsigned continue_limit_rcpt; 450 extern unsigned continue_limit_rcptdom; 451 #endif 452 453 454 extern uschar *csa_status; /* Client SMTP Authorization result */ 455 456 typedef struct { 457 unsigned callout_hold_only:1; /* Conn is only for verify callout */ 458 unsigned delivery:1; /* When to attempt */ 459 unsigned defer_pass:1; /* Pass 4xx to caller rather than spooling */ 460 unsigned is_tls:1; /* Conn has TLS active */ 461 client_conn_ctx cctx; /* Open connection */ 462 int nrcpt; /* Count of addresses */ 463 uschar * transport; /* Name of transport */ 464 uschar * interface; /* (address of) */ 465 uschar * snd_ip; /* sending_ip_address */ 466 int snd_port; /* sending_port */ 467 unsigned peer_options; /* smtp_peer_options */ 468 host_item host; /* Host used */ 469 address_item addr; /* (Chain of) addresses */ 470 } cut_t; 471 extern cut_t cutthrough; /* Deliver-concurrently */ 472 473 extern int daemon_notifier_fd; /* Unix socket for notifications */ 474 extern uschar *daemon_smtp_port; /* Can be a list of ports */ 475 extern int daemon_startup_retries; /* Number of times to retry */ 476 extern int daemon_startup_sleep; /* Sleep between retries */ 477 478 #ifdef EXPERIMENTAL_DCC 479 extern BOOL dcc_direct_add_header; /* directly add header */ 480 extern uschar *dcc_header; /* dcc header */ 481 extern uschar *dcc_result; /* dcc result */ 482 extern uschar *dccifd_address; /* address of the dccifd daemon */ 483 extern uschar *dccifd_options; /* options for the dccifd daemon */ 484 #endif 485 486 extern int debug_fd; /* The fd for debug_file */ 487 extern FILE *debug_file; /* Where to write debugging info */ 488 extern int debug_notall[]; /* Debug options excluded from +all */ 489 extern bit_table debug_options[]; /* Table of debug options */ 490 extern int debug_options_count; /* Size of table */ 491 extern BOOL debug_store; /* Do extra checks on store_reset */ 492 extern int delay_warning[]; /* Times between warnings */ 493 extern uschar *delay_warning_condition; /* Condition string for warnings */ 494 extern BOOL delivery_date_remove; /* Remove delivery-date headers */ 495 496 extern uschar *deliver_address_data; /* Arbitrary data for an address */ 497 extern int deliver_datafile; /* FD for data part of message */ 498 extern const uschar *deliver_domain; /* The local domain for delivery */ 499 extern uschar *deliver_domain_data; /* From domain lookup */ 500 extern const uschar *deliver_domain_orig; /* The original local domain for delivery */ 501 extern const uschar *deliver_domain_parent; /* The parent domain for delivery */ 502 extern BOOL deliver_drop_privilege; /* TRUE for unprivileged delivery */ 503 extern time_t deliver_frozen_at; /* Time of freezing */ 504 extern uschar *deliver_home; /* Home directory for pipes */ 505 extern const uschar *deliver_host; /* (First) host for routed local deliveries */ 506 /* Remote host for filter */ 507 extern const uschar *deliver_host_address; /* Address for remote delivery filter */ 508 extern int deliver_host_port; /* Address for remote delivery filter */ 509 extern uschar *deliver_in_buffer; /* Buffer for copying file */ 510 extern ino_t deliver_inode; /* Inode for appendfile */ 511 extern uschar *deliver_localpart; /* The local part for delivery */ 512 extern uschar *deliver_localpart_data; /* From local part lookup (de-tainted) */ 513 extern uschar *deliver_localpart_orig; /* The original local part for delivery */ 514 extern uschar *deliver_localpart_parent; /* The parent local part for delivery */ 515 extern uschar *deliver_localpart_prefix; /* The stripped prefix, if any */ 516 extern uschar *deliver_localpart_prefix_v; /* The stripped-prefix variable portion, if any */ 517 extern uschar *deliver_localpart_suffix; /* The stripped suffix, if any */ 518 extern uschar *deliver_localpart_suffix_v; /* The stripped-suffix variable portion, if any */ 519 extern uschar *deliver_out_buffer; /* Buffer for copying file */ 520 extern int deliver_queue_load_max; /* Different value for queue running */ 521 extern address_item *deliver_recipients; /* Current set of addresses */ 522 extern uschar *deliver_selectstring; /* For selecting by recipient */ 523 extern uschar *deliver_selectstring_sender; /* For selecting by sender */ 524 #ifdef ENABLE_DISABLE_FSYNC 525 extern BOOL disable_fsync; /* Not for normal use */ 526 #endif 527 extern BOOL disable_ipv6; /* Don't do any IPv6 things */ 528 529 #ifndef DISABLE_DKIM 530 extern unsigned dkim_collect_input; /* Runtime count of dkim signtures; tracks whether SMTP input is fed to DKIM validation */ 531 extern uschar *dkim_cur_signer; /* Expansion variable, holds the current "signer" domain or identity during a acl_smtp_dkim run */ 532 extern int dkim_key_length; /* Expansion variable, length of signing key in bits */ 533 extern void *dkim_signatures; /* Actually a (pdkim_signature *) but most files do not need to know */ 534 extern uschar *dkim_signers; /* Expansion variable, holds colon-separated list of domains and identities that have signed a message */ 535 extern uschar *dkim_signing_domain; /* Expansion variable, domain used for signing a message. */ 536 extern uschar *dkim_signing_selector; /* Expansion variable, selector used for signing a message. */ 537 extern uschar *dkim_verify_hashes; /* Preference order for signatures */ 538 extern uschar *dkim_verify_keytypes; /* Preference order for signatures */ 539 extern uschar *dkim_verify_min_keysizes; /* list of minimum key sizes, keyed by algo */ 540 extern BOOL dkim_verify_minimal; /* Shortcircuit signture verification */ 541 extern uschar *dkim_verify_overall; /* First successful domain verified, or null */ 542 extern uschar *dkim_verify_signers; /* Colon-separated list of domains for each of which we call the DKIM ACL */ 543 extern uschar *dkim_verify_status; /* result for this signature */ 544 extern uschar *dkim_verify_reason; /* result for this signature */ 545 #endif 546 #ifdef SUPPORT_DMARC 547 extern uschar *dmarc_domain_policy; /* Expansion for declared policy of used domain */ 548 extern uschar *dmarc_forensic_sender; /* Set sender address for forensic reports */ 549 extern uschar *dmarc_history_file; /* Expansion variable, file to store dmarc results */ 550 extern uschar *dmarc_status; /* Expansion variable, one word value */ 551 extern uschar *dmarc_status_text; /* Expansion variable, human readable value */ 552 extern uschar *dmarc_tld_file; /* Mozilla TLDs text file */ 553 extern uschar *dmarc_used_domain; /* Expansion variable, domain libopendmarc chose for DMARC policy lookup */ 554 #endif 555 556 extern uschar *dns_again_means_nonexist; /* Domains that are badly set up */ 557 extern int dns_csa_search_limit; /* How deep to search for CSA SRV records */ 558 extern BOOL dns_csa_use_reverse; /* Check CSA in reverse DNS? (non-standard) */ 559 extern int dns_cname_loops; /* Follow CNAMEs returned by resolver to this depth */ 560 extern uschar *dns_ipv4_lookup; /* For these domains, don't look for AAAA (or A6) */ 561 #ifdef SUPPORT_DANE 562 extern int dns_dane_ok; /* Ok to use DANE when checking TLS authenticity */ 563 #endif 564 extern int dns_retrans; /* Retransmission time setting */ 565 extern int dns_retry; /* Number of retries */ 566 extern int dns_dnssec_ok; /* When constructing DNS query, set DO flag */ 567 extern const uschar * dns_rc_names[]; /* Mostly for debug output */ 568 extern uschar *dns_trust_aa; /* DNSSEC trust AA as AD */ 569 extern int dns_use_edns0; /* Coerce EDNS0 support on/off in resolver. */ 570 extern uschar *dnslist_domain; /* DNS (black) list domain */ 571 extern uschar *dnslist_matched; /* DNS (black) list matched key */ 572 extern uschar *dnslist_text; /* DNS (black) list text message */ 573 extern uschar *dnslist_value; /* DNS (black) list IP address */ 574 extern tree_node *domainlist_anchor; /* Tree of defined domain lists */ 575 extern int domainlist_count; /* Number defined */ 576 577 /* This option is now a no-opt, retained for compatibility */ 578 extern BOOL drop_cr; /* For broken local MUAs */ 579 580 extern uschar *dsn_from; /* From: string for DSNs */ 581 582 extern BOOL envelope_to_remove; /* Remove envelope_to_headers */ 583 extern int errno_quota; /* Quota errno in this OS */ 584 extern int error_handling; /* Error handling style */ 585 extern uschar *errors_copy; /* For taking copies of errors */ 586 extern uschar *errors_reply_to; /* Reply-to for error messages */ 587 extern int errors_sender_rc; /* Return after message to sender*/ 588 589 #ifndef DISABLE_EVENT 590 extern uschar *event_action; /* expansion for delivery events */ 591 extern uschar *event_data; /* event data */ 592 extern int event_defer_errno; /* error number set when a remote delivery is deferred with a host error */ 593 extern const uschar *event_name; /* event classification */ 594 #endif 595 596 extern gid_t exim_gid; /* To be used with exim_uid */ 597 extern BOOL exim_gid_set; /* TRUE if exim_gid set */ 598 extern uschar *exim_path; /* Path to exec exim */ 599 extern const uschar *exim_sieve_extension_list[]; /* list of sieve extensions */ 600 extern uid_t exim_uid; /* Non-root uid for exim */ 601 extern BOOL exim_uid_set; /* TRUE if exim_uid set */ 602 extern int expand_level; /* Nesting depth; indent for debug */ 603 extern int expand_forbid; /* RDO flags for forbidding things */ 604 extern int expand_nlength[]; /* Lengths of numbered strings */ 605 extern int expand_nmax; /* Max numerical value */ 606 extern uschar *expand_nstring[]; /* Numbered strings */ 607 extern BOOL extract_addresses_remove_arguments; /* Controls -t behaviour */ 608 extern uschar *extra_local_interfaces; /* Local, non-listen interfaces */ 609 610 extern int fake_response; /* Fake FAIL or DEFER response to data */ 611 extern uschar *fake_response_text; /* User defined message for the above. Default is in globals.c. */ 612 extern int filter_n[FILTER_VARIABLE_COUNT]; /* filter variables */ 613 extern int filter_sn[FILTER_VARIABLE_COUNT]; /* variables set by system filter */ 614 extern int filter_test; /* Filter test type */ 615 extern uschar *filter_test_sfile; /* System filter test file */ 616 extern uschar *filter_test_ufile; /* User filter test file */ 617 extern uschar *filter_thisaddress; /* For address looping */ 618 extern int finduser_retries; /* Retry count for getpwnam() */ 619 extern uid_t fixed_never_users[]; /* Can't be overridden */ 620 extern uschar *freeze_tell; /* Message on (some) freezings */ 621 extern uschar *freeze_tell_config; /* The configured setting */ 622 extern uschar *fudged_queue_times; /* For use in test harness */ 623 624 extern uschar *gecos_name; /* To be expanded when pattern matches */ 625 extern uschar *gecos_pattern; /* Pattern to match */ 626 extern rewrite_rule *global_rewrite_rules; /* Chain of rewriting rules */ 627 628 extern volatile sig_atomic_t had_command_timeout; /* Alarm sighandler called */ 629 extern volatile sig_atomic_t had_command_sigterm; /* TERM sighandler called */ 630 extern volatile sig_atomic_t had_data_timeout; /* Alarm sighandler called */ 631 extern volatile sig_atomic_t had_data_sigint; /* TERM/INT sighandler called */ 632 extern int header_insert_maxlen; /* Max for inserting headers */ 633 extern int header_maxsize; /* Max total length for header */ 634 extern int header_line_maxsize; /* Max for an individual line */ 635 extern header_name header_names[]; /* Table of header names */ 636 extern int header_names_size; /* Number of entries */ 637 extern uschar *helo_accept_junk_hosts; /* Allowed to use junk arg */ 638 extern uschar *helo_allow_chars; /* Rogue chars to allow in HELO/EHLO */ 639 extern uschar *helo_lookup_domains; /* If these given, lookup host name */ 640 extern uschar *helo_try_verify_hosts; /* Soft check HELO argument for these */ 641 extern uschar *helo_verify_hosts; /* Hard check HELO argument for these */ 642 extern const uschar *hex_digits; /* Used in several places */ 643 extern uschar *hold_domains; /* Hold up deliveries to these */ 644 extern uschar *host_data; /* Obtained from lookup in ACL */ 645 extern uschar *host_lookup; /* For which IP addresses are always looked up */ 646 extern BOOL host_lookup_deferred; /* TRUE if lookup deferred */ 647 extern BOOL host_lookup_failed; /* TRUE if lookup failed */ 648 extern uschar *host_lookup_order; /* Order of host lookup types */ 649 extern uschar *host_lookup_msg; /* Text for why it failed */ 650 extern int host_number; /* For sharing spools */ 651 extern uschar *host_number_string; /* For expanding */ 652 extern uschar *hosts_require_helo; /* check for HELO/EHLO before MAIL */ 653 extern uschar *host_reject_connection; /* Reject these hosts */ 654 extern tree_node *hostlist_anchor; /* Tree of defined host lists */ 655 extern int hostlist_count; /* Number defined */ 656 extern uschar *hosts_connection_nolog; /* Limits the logging option */ 657 extern uschar *hosts_treat_as_local; /* For routing */ 658 659 extern int ignore_bounce_errors_after; /* Keep them for this time. */ 660 extern BOOL ignore_fromline_local; /* Local SMTP ignore fromline */ 661 extern uschar *ignore_fromline_hosts; /* Hosts permitted to send "From " */ 662 extern int inetd_wait_timeout; /* Timeout for inetd wait mode */ 663 extern uschar *initial_cwd; /* The directory we where in at startup */ 664 extern uschar *iterate_item; /* Item from iterate list */ 665 666 extern int journal_fd; /* Fd for journal file */ 667 668 extern uschar *keep_environment; /* Whitelist for environment variables */ 669 extern int keep_malformed; /* Time to keep malformed messages */ 670 671 extern uschar *eldap_dn; /* Where LDAP DNs are left */ 672 #ifdef EXPERIMENTAL_ESMTP_LIMITS 673 extern uschar *limits_advertise_hosts; /* for banner/EHLO pipelining */ 674 #endif 675 extern int load_average; /* Most recently read load average */ 676 extern BOOL local_from_check; /* For adding Sender: (global value) */ 677 extern uschar *local_from_prefix; /* Permitted prefixes */ 678 extern uschar *local_from_suffix; /* Permitted suffixes */ 679 extern uschar *local_interfaces; /* For forcing specific interfaces */ 680 #ifdef HAVE_LOCAL_SCAN 681 extern uschar *local_scan_data; /* Text returned by local_scan() */ 682 extern optionlist local_scan_options[];/* Option list for local_scan() */ 683 extern int local_scan_options_count; /* Size of the list */ 684 extern int local_scan_timeout; /* Timeout for local_scan() */ 685 #endif 686 extern BOOL local_sender_retain; /* Retain Sender: (with no From: check) */ 687 extern gid_t local_user_gid; /* As it says; may be set in routers */ 688 extern uid_t local_user_uid; /* As it says; may be set in routers */ 689 extern tree_node *localpartlist_anchor;/* Tree of defined localpart lists */ 690 extern int localpartlist_count; /* Number defined */ 691 extern uschar *log_buffer; /* For constructing log entries */ 692 extern int log_default[]; /* Initialization list for log_selector */ 693 extern uschar *log_file_path; /* If unset, use default */ 694 extern int log_notall[]; /* Log options excluded from +all */ 695 extern bit_table log_options[]; /* Table of options */ 696 extern int log_options_count; /* Size of table */ 697 extern int log_reject_target; /* Target log for ACL rejections */ 698 extern unsigned int log_selector[]; /* Bit map of logging options */ 699 extern uschar *log_selector_string; /* As supplied in the config */ 700 extern FILE *log_stderr; /* Copy of stderr for log use, or NULL */ 701 extern BOOL log_timezone; /* TRUE to include the timezone in log lines */ 702 extern uschar *login_sender_address; /* The actual sender address */ 703 extern lookup_info **lookup_list; /* Array of pointers to available lookups */ 704 extern int lookup_list_count; /* Number of entries in the list */ 705 extern uschar *lookup_dnssec_authenticated; /* AD status of dns lookup */ 706 extern int lookup_open_max; /* Max lookup files to cache */ 707 extern uschar *lookup_value; /* Value looked up from file */ 708 709 extern macro_item *macros; /* Configuration macros */ 710 extern macro_item *macros_user; /* Non-builtin configuration macros */ 711 extern macro_item *mlast; /* Last item in macro list */ 712 extern uschar *mailstore_basename; /* For mailstore deliveries */ 713 #ifdef WITH_CONTENT_SCAN 714 extern uschar *malware_name; /* Name of virus or malware ("W32/Klez-H") */ 715 #endif 716 extern int max_received_linelength;/* What it says */ 717 extern int max_username_length; /* For systems with broken getpwnam() */ 718 extern int message_age; /* In seconds */ 719 extern uschar *message_body; /* Start of message body for filter */ 720 extern uschar *message_body_end; /* End of message body for filter */ 721 extern BOOL message_body_newlines; /* FALSE => remove newlines */ 722 extern int message_body_size; /* Sic */ 723 extern int message_body_visible; /* Amount visible in message_body */ 724 extern int message_ended; /* State of message reading and how ended */ 725 extern uschar *message_headers; /* When built */ 726 extern uschar message_id_option[]; /* -E<message-id> for use as option */ 727 extern uschar *message_id_external; /* External form of following */ 728 extern uschar *message_id_domain; /* Expanded to form domain-part of message_id */ 729 extern uschar *message_id_text; /* Expanded to form message_id */ 730 extern struct timeval message_id_tv; /* Time used to create last message_id */ 731 extern int message_linecount; /* As it says */ 732 extern BOOL message_logs; /* TRUE to write message logs */ 733 extern int message_size; /* Size of message */ 734 extern uschar *message_size_limit; /* As it says */ 735 #ifdef SUPPORT_I18N 736 extern BOOL message_smtputf8; /* Internationalized mail handling */ 737 extern int message_utf8_downconvert; /* convert from utf8 */ 738 const extern pcre *regex_UTF8; /* For recognizing SMTPUTF8 settings */ 739 #endif 740 extern uschar message_subdir[]; /* Subdirectory for messages */ 741 extern uschar *message_reference; /* Reference for error messages */ 742 743 /* MIME ACL expandables */ 744 #ifdef WITH_CONTENT_SCAN 745 extern int mime_anomaly_level; 746 extern const uschar *mime_anomaly_text; 747 extern uschar *mime_boundary; 748 extern uschar *mime_charset; 749 extern uschar *mime_content_description; 750 extern uschar *mime_content_disposition; 751 extern uschar *mime_content_id; 752 extern unsigned int mime_content_size; 753 extern uschar *mime_content_transfer_encoding; 754 extern uschar *mime_content_type; 755 extern uschar *mime_decoded_filename; 756 extern uschar *mime_filename; 757 extern int mime_is_multipart; 758 extern int mime_is_coverletter; 759 extern int mime_is_rfc822; 760 extern int mime_part_count; 761 #endif 762 763 extern BOOL mua_wrapper; /* TRUE when Exim is wrapping an MUA */ 764 765 extern uid_t *never_users; /* List of uids never to be used */ 766 extern uschar *notifier_socket; /* Name for daemon notifier unix-socket */ 767 768 extern const int on; /* For setsockopt */ 769 extern const int off; 770 771 extern optionlist optionlist_auths[]; /* These option lists are made */ 772 extern int optionlist_auths_size; /* global so that readconf can */ 773 extern optionlist optionlist_routers[]; /* see them for printing out */ 774 extern int optionlist_routers_size; /* the options. */ 775 extern optionlist optionlist_transports[]; 776 extern int optionlist_transports_size; 777 778 extern uid_t original_euid; /* Original effective uid */ 779 extern gid_t originator_gid; /* Gid of whoever wrote spool file */ 780 extern uschar *originator_login; /* Login of same */ 781 extern uschar *originator_name; /* Full name of same */ 782 extern uid_t originator_uid; /* Uid of ditto */ 783 extern uschar *override_local_interfaces; /* Value of -oX argument */ 784 extern uschar *override_pid_file_path; /* Value of -oP argument */ 785 786 extern uschar *percent_hack_domains; /* Local domains for which '% operates */ 787 extern uschar *pid_file_path; /* For writing daemon pids */ 788 #ifndef DISABLE_PIPE_CONNECT 789 extern uschar *pipe_connect_advertise_hosts; /* for banner/EHLO pipelining */ 790 #endif 791 extern uschar *pipelining_advertise_hosts; /* As it says */ 792 #ifndef DISABLE_PRDR 793 extern BOOL prdr_enable; /* As it says */ 794 extern BOOL prdr_requested; /* Connecting mail server wants PRDR */ 795 #endif 796 extern BOOL preserve_message_logs; /* Save msglog files */ 797 extern uschar *primary_hostname; /* Primary name of this computer */ 798 extern BOOL print_topbitchars; /* Topbit chars are printing chars */ 799 extern uschar *process_info; /* For SIGUSR1 output */ 800 extern int process_info_len; 801 extern uschar *process_log_path; /* Alternate path */ 802 extern const uschar *process_purpose; /* for debug output */ 803 extern BOOL prod_requires_admin; /* TRUE if prodding requires admin */ 804 805 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS) 806 extern uschar *hosts_proxy; /* Hostlist which (require) use proxy protocol */ 807 extern uschar *proxy_external_address; /* IP of remote interface of proxy */ 808 extern int proxy_external_port; /* Port on remote interface of proxy */ 809 extern uschar *proxy_local_address; /* IP of local interface of proxy */ 810 extern int proxy_local_port; /* Port on local interface of proxy */ 811 extern int proxy_protocol_timeout; /* Timeout for proxy negotiation */ 812 extern BOOL proxy_session; /* TRUE if receiving mail from valid proxy */ 813 #endif 814 815 extern uschar *prvscheck_address; /* Set during prvscheck expansion item */ 816 extern uschar *prvscheck_keynum; /* Set during prvscheck expansion item */ 817 extern uschar *prvscheck_result; /* Set during prvscheck expansion item */ 818 819 extern const uschar *qualify_domain_recipient; /* Domain to qualify recipients with */ 820 extern uschar *qualify_domain_sender; /* Domain to qualify senders with */ 821 extern uschar *queue_domains; /* Queue these domains */ 822 #ifndef DISABLE_QUEUE_RAMP 823 extern BOOL queue_fast_ramp; /* 2-phase queue-run overlap */ 824 #endif 825 extern BOOL queue_list_requires_admin; /* TRUE if -bp requires admin */ 826 /* immediate children */ 827 extern pid_t queue_run_pid; /* PID of the queue running process or 0 */ 828 extern int queue_run_pipe; /* Pipe for synchronizing */ 829 extern int queue_interval; /* Queue running interval */ 830 extern uschar *queue_name; /* Name of queue, if nondefault spooling */ 831 extern uschar *queue_name_dest; /* Destination queue, for moving messages */ 832 extern BOOL queue_only; /* TRUE to disable immediate delivery */ 833 extern int queue_only_load; /* Max load before auto-queue */ 834 extern BOOL queue_only_load_latch; /* Latch queue_only_load TRUE */ 835 extern uschar *queue_only_file; /* Queue if file exists/not-exists */ 836 extern BOOL queue_only_override; /* Allow override from command line */ 837 extern BOOL queue_run_in_order; /* As opposed to random */ 838 extern uschar *queue_run_max; /* Max queue runners */ 839 extern unsigned queue_size; /* items in queue */ 840 extern time_t queue_size_next; /* next time to evaluate queue_size */ 841 extern uschar *queue_smtp_domains; /* Ditto, for these domains */ 842 843 extern unsigned int random_seed; /* Seed for random numbers */ 844 extern tree_node *ratelimiters_cmd; /* Results of command ratelimit checks */ 845 extern tree_node *ratelimiters_conn; /* Results of connection ratelimit checks */ 846 extern tree_node *ratelimiters_mail; /* Results of per-mail ratelimit checks */ 847 extern uschar *raw_active_hostname; /* Pre-expansion */ 848 extern uschar *raw_sender; /* Before rewriting */ 849 extern uschar **raw_recipients; /* Before rewriting */ 850 extern int raw_recipients_count; 851 extern const uschar * rc_names[]; /* Mostly for debug output */ 852 extern int rcpt_count; /* Count of RCPT commands in a message */ 853 extern int rcpt_fail_count; /* Those that got 5xx */ 854 extern int rcpt_defer_count; /* Those that got 4xx */ 855 extern gid_t real_gid; /* Real gid */ 856 extern uid_t real_uid; /* Real user running program */ 857 extern int receive_linecount; /* Mainly for BSMTP errors */ 858 extern int receive_messagecount; /* Mainly for BSMTP errors */ 859 extern int receive_timeout; /* For non-SMTP acceptance */ 860 extern int received_count; /* Count of Received: headers */ 861 extern uschar *received_for; /* For "for" field */ 862 extern uschar *received_header_text; /* Definition of Received: header */ 863 extern int received_headers_max; /* Max count of Received: headers */ 864 extern struct timeval received_time; /* Time the message started to be received */ 865 extern struct timeval received_time_complete; /* Time the message completed reception */ 866 extern uschar *recipient_data; /* lookup data for recipients */ 867 extern uschar *recipient_unqualified_hosts; /* Permitted unqualified recipients */ 868 extern uschar *recipient_verify_failure; /* What went wrong */ 869 extern int recipients_list_max; /* Maximum number fitting in list */ 870 extern int recipients_max; /* Max permitted */ 871 extern BOOL recipients_max_reject; /* If TRUE, reject whole message */ 872 extern const pcre *regex_AUTH; /* For recognizing AUTH settings */ 873 extern const pcre *regex_check_dns_names; /* For DNS name checking */ 874 extern const pcre *regex_From; /* For recognizing "From_" lines */ 875 extern const pcre *regex_CHUNKING; /* For recognizing CHUNKING (RFC 3030) */ 876 extern const pcre *regex_IGNOREQUOTA; /* For recognizing IGNOREQUOTA (LMTP) */ 877 #ifdef EXPERIMENTAL_ESMTP_LIMITS 878 extern const pcre *regex_LIMITS; /* For recognizing LIMITS */ 879 #endif 880 extern const pcre *regex_PIPELINING; /* For recognizing PIPELINING */ 881 extern const pcre *regex_SIZE; /* For recognizing SIZE settings */ 882 #ifndef DISABLE_PIPE_CONNECT 883 extern const pcre *regex_EARLY_PIPE; /* For recognizing PIPE_CONNCT */ 884 #endif 885 extern const pcre *regex_ismsgid; /* Compiled r.e. for message it */ 886 extern const pcre *regex_smtp_code; /* For recognizing SMTP codes */ 887 extern uschar *regex_vars[]; /* $regexN variables */ 888 #ifdef WHITELIST_D_MACROS 889 extern const pcre *regex_whitelisted_macro; /* For -D macro values */ 890 #endif 891 #ifdef WITH_CONTENT_SCAN 892 extern uschar *regex_match_string; /* regex that matched a line (regex ACL condition) */ 893 #endif 894 extern int remote_delivery_count; /* Number of remote addresses */ 895 extern int remote_max_parallel; /* Maximum parallel delivery */ 896 extern uschar *remote_sort_domains; /* Remote domain sorting order */ 897 extern retry_config *retries; /* Chain of retry config information */ 898 extern int retry_data_expire; /* When to expire retry data */ 899 extern int retry_interval_max; /* Absolute maximum */ 900 extern int retry_maximum_timeout; /* The maximum timeout */ 901 extern uschar *return_path; /* Return path for a message */ 902 extern BOOL return_path_remove; /* Remove return-path headers */ 903 extern int rewrite_existflags; /* Indicate which headers have rewrites */ 904 extern uschar *rfc1413_hosts; /* RFC hosts */ 905 extern int rfc1413_query_timeout; /* Timeout on RFC 1413 calls */ 906 /* extern BOOL rfc821_domains; */ /* If set, syntax is 821, not 822 => being abolished */ 907 extern uid_t root_gid; /* The gid for root */ 908 extern uid_t root_uid; /* The uid for root */ 909 extern router_info routers_available[];/* Vector of available routers */ 910 extern router_instance *routers; /* Chain of instantiated routers */ 911 extern router_instance router_defaults;/* Default values */ 912 extern uschar *router_name; /* Name of router last started */ 913 extern tree_node *router_var; /* Variables set by router */ 914 extern ip_address_item *running_interfaces; /* Host's running interfaces */ 915 extern uschar *running_status; /* Flag string for testing */ 916 extern int runrc; /* rc from ${run} */ 917 918 extern uschar *search_error_message; /* Details of lookup problem */ 919 extern uschar *self_hostname; /* Self host after routing->directors */ 920 extern unsigned int sender_address_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender */ 921 extern uschar *sender_address_data; /* address_data from sender verify */ 922 extern uschar *sender_address_unrewritten; /* Set if rewritten by verify */ 923 extern uschar *sender_data; /* lookup result for senders */ 924 extern unsigned int sender_domain_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender domain */ 925 extern uschar *sender_fullhost; /* Sender host name + address */ 926 extern BOOL sender_helo_dnssec; /* True if HELO verify used DNS and was DNSSEC */ 927 extern uschar *sender_helo_name; /* Host name from HELO/EHLO */ 928 extern uschar **sender_host_aliases; /* Points to list of alias names */ 929 extern uschar *sender_host_auth_pubname; /* Public-name of authentication method */ 930 extern unsigned int sender_host_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for incoming host */ 931 extern BOOL sender_host_dnssec; /* true if sender_host_name verified in DNSSEC */ 932 extern uschar *sender_ident; /* Sender identity via RFC 1413 */ 933 extern uschar *sender_rate; /* Sender rate computed by ACL */ 934 extern uschar *sender_rate_limit; /* Configured rate limit */ 935 extern uschar *sender_rate_period; /* Configured smoothing period */ 936 extern uschar *sender_rcvhost; /* Host data for Received: */ 937 extern uschar *sender_unqualified_hosts; /* Permitted unqualified senders */ 938 extern uschar *sender_verify_failure; /* What went wrong */ 939 extern address_item *sender_verified_list; /* Saved chain of sender verifies */ 940 extern address_item *sender_verified_failed; /* The one that caused denial */ 941 extern uschar *sending_ip_address; /* Address of outgoing (SMTP) interface */ 942 extern int sending_port; /* Port of outgoing interface */ 943 extern SIGNAL_BOOL sigalrm_seen; /* Flag for sigalrm_handler */ 944 extern const uschar *sigalarm_setter; /* For debug, set to callpoint of alarm() */ 945 extern uschar **sighup_argv; /* Args for re-execing after SIGHUP */ 946 extern int slow_lookup_log; /* Log DNS lookups taking longer than N millisecs */ 947 extern int smtp_accept_count; /* Count of connections */ 948 extern BOOL smtp_accept_keepalive; /* Set keepalive on incoming */ 949 extern int smtp_accept_max; /* Max SMTP connections */ 950 extern int smtp_accept_max_nonmail;/* Max non-mail commands in one con */ 951 extern uschar *smtp_accept_max_nonmail_hosts; /* Limit non-mail cmds from these hosts */ 952 extern uschar *smtp_accept_max_per_connection; /* Max msgs per connection */ 953 extern uschar *smtp_accept_max_per_host; /* Max SMTP cons from one IP addr */ 954 extern int smtp_accept_queue; /* Queue after so many connections */ 955 extern int smtp_accept_queue_per_connection; /* Queue after so many msgs */ 956 extern int smtp_accept_reserve; /* Reserve these SMTP connections */ 957 extern uschar *smtp_active_hostname; /* Hostname for this message */ 958 extern int smtp_backlog_monitor; /* listen backlog level to log */ 959 extern uschar *smtp_banner; /* Banner string (to be expanded) */ 960 extern BOOL smtp_check_spool_space; /* TRUE to check SMTP SIZE value */ 961 extern int smtp_ch_index; /* Index in smtp_connection_had */ 962 extern uschar *smtp_cmd_argument; /* For all SMTP commands */ 963 extern uschar *smtp_cmd_buffer; /* SMTP command buffer */ 964 extern struct timeval smtp_connection_start; /* Start time of SMTP connection */ 965 extern uschar smtp_connection_had[]; /* Recent SMTP commands */ 966 extern int smtp_connect_backlog; /* Max backlog permitted */ 967 extern double smtp_delay_mail; /* Current MAIL delay */ 968 extern double smtp_delay_rcpt; /* Current RCPT delay */ 969 extern BOOL smtp_enforce_sync; /* Enforce sync rules */ 970 extern uschar *smtp_etrn_command; /* Command to run */ 971 extern BOOL smtp_etrn_serialize; /* Only one at once */ 972 extern FILE *smtp_in; /* Incoming SMTP input file */ 973 extern int smtp_listen_backlog; /* Current listener socket backlog, if monitored */ 974 extern int smtp_load_reserve; /* Only from reserved if load > this */ 975 extern int smtp_mailcmd_count; /* Count of MAIL commands */ 976 extern int smtp_mailcmd_max; /* Limit for MAIL commands */ 977 extern int smtp_max_synprot_errors;/* Max syntax/protocol errors */ 978 extern int smtp_max_unknown_commands; /* As it says */ 979 extern uschar *smtp_names[]; /* decode for command codes */ 980 extern uschar *smtp_notquit_reason; /* Global for disconnect reason */ 981 extern FILE *smtp_out; /* Incoming SMTP output file */ 982 extern uschar *smtp_ratelimit_hosts; /* Rate limit these hosts */ 983 extern uschar *smtp_ratelimit_mail; /* Parameters for MAIL limiting */ 984 extern uschar *smtp_ratelimit_rcpt; /* Parameters for RCPT limiting */ 985 extern uschar *smtp_read_error; /* Message for SMTP input error */ 986 extern int smtp_receive_timeout; /* Applies to each received line */ 987 extern uschar *smtp_receive_timeout_s; /* ... expandable version */ 988 extern uschar *smtp_reserve_hosts; /* Hosts for reserved slots */ 989 extern BOOL smtp_return_error_details; /* TRUE to return full info */ 990 extern int smtp_rlm_base; /* Base interval for MAIL rate limit */ 991 extern double smtp_rlm_factor; /* Factor for MAIL rate limit */ 992 extern int smtp_rlm_limit; /* Max delay */ 993 extern int smtp_rlm_threshold; /* Threshold for RCPT rate limit */ 994 extern int smtp_rlr_base; /* Base interval for RCPT rate limit */ 995 extern double smtp_rlr_factor; /* Factor for RCPT rate limit */ 996 extern int smtp_rlr_limit; /* Max delay */ 997 extern int smtp_rlr_threshold; /* Threshold for RCPT rate limit */ 998 extern unsigned smtp_peer_options; /* Global flags for passed connections */ 999 extern unsigned smtp_peer_options_wrap; /* stacked version hidden by TLS */ 1000 #ifdef SUPPORT_I18N 1001 extern uschar *smtputf8_advertise_hosts; /* ingress control */ 1002 #endif 1003 1004 #ifdef WITH_CONTENT_SCAN 1005 extern uschar *spamd_address; /* address for the spamassassin daemon */ 1006 extern uschar *spam_bar; /* the spam "bar" (textual representation of spam_score) */ 1007 extern uschar *spam_report; /* the spamd report (multiline) */ 1008 extern uschar *spam_action; /* the spamd recommended-action */ 1009 extern uschar *spam_score; /* the spam score (float) */ 1010 extern uschar *spam_score_int; /* spam_score * 10 (int) */ 1011 #endif 1012 #ifdef SUPPORT_SPF 1013 extern uschar *spf_guess; /* spf best-guess record */ 1014 extern uschar *spf_header_comment; /* spf header comment */ 1015 extern uschar *spf_received; /* Received-SPF: header */ 1016 extern uschar *spf_result; /* spf result in string form */ 1017 extern BOOL spf_result_guessed; /* spf result is of best-guess operation */ 1018 extern uschar *spf_smtp_comment; /* spf comment to include in SMTP reply */ 1019 extern uschar *spf_smtp_comment_template; 1020 /* template to construct the spf comment by libspf2 */ 1021 #endif 1022 extern BOOL split_spool_directory; /* TRUE to use multiple subdirs */ 1023 extern FILE *spool_data_file; /* handle for -D file */ 1024 extern uschar *spool_directory; /* Name of spool directory */ 1025 extern BOOL spool_wireformat; /* can write wireformat -D files */ 1026 #ifdef EXPERIMENTAL_SRS_ALT 1027 extern uschar *srs_config; /* SRS config secret:max age:hash length:use timestamp:use hash */ 1028 extern uschar *srs_db_address; /* SRS db address */ 1029 extern uschar *srs_db_key; /* SRS db key */ 1030 extern int srs_hashlength; /* SRS hash length */ 1031 extern int srs_hashmin; /* SRS minimum hash length */ 1032 extern int srs_maxage; /* SRS max age */ 1033 extern uschar *srs_orig_sender; /* SRS original sender */ 1034 extern uschar *srs_orig_recipient; /* SRS original recipient */ 1035 extern uschar *srs_recipient; /* SRS recipient */ 1036 extern uschar *srs_secrets; /* SRS secrets list */ 1037 extern uschar *srs_status; /* SRS staus */ 1038 extern BOOL srs_usehash; /* SRS use hash flag */ 1039 extern BOOL srs_usetimestamp; /* SRS use timestamp flag */ 1040 #endif 1041 #ifdef SUPPORT_SRS 1042 extern uschar *srs_recipient; /* SRS recipient */ 1043 #endif 1044 extern BOOL strict_acl_vars; /* ACL variables have to be set before being used */ 1045 extern int string_datestamp_offset;/* After insertion by string_format */ 1046 extern int string_datestamp_length;/* After insertion by string_format */ 1047 extern int string_datestamp_type; /* After insertion by string_format */ 1048 extern BOOL strip_excess_angle_brackets; /* Surrounding route-addrs */ 1049 extern BOOL strip_trailing_dot; /* Remove dots at ends of domains */ 1050 extern const uschar *submission_domain;/* Domain for submission mode */ 1051 extern const uschar *submission_name; /* User name set from ACL */ 1052 extern BOOL syslog_duplication; /* FALSE => no duplicate logging */ 1053 extern int syslog_facility; /* As defined by Syslog.h */ 1054 extern BOOL syslog_pid; /* TRUE if PID on syslogs */ 1055 extern uschar *syslog_processname; /* 'ident' param to openlog() */ 1056 extern BOOL syslog_timestamp; /* TRUE if time on syslogs */ 1057 extern uschar *system_filter; /* Name of system filter file */ 1058 1059 extern uschar *system_filter_directory_transport; /* Transports for the */ 1060 extern uschar *system_filter_file_transport; /* system filter */ 1061 extern uschar *system_filter_pipe_transport; 1062 extern uschar *system_filter_reply_transport; 1063 1064 extern gid_t system_filter_gid; /* Gid for running system filter */ 1065 extern BOOL system_filter_gid_set; /* TRUE if gid set */ 1066 extern uid_t system_filter_uid; /* Uid for running system filter */ 1067 extern BOOL system_filter_uid_set; /* TRUE if uid set */ 1068 1069 extern blob tcp_fastopen_nodata; /* for zero-data TFO connect requests */ 1070 extern BOOL tcp_nodelay; /* Controls TCP_NODELAY on daemon */ 1071 extern tfo_state_t tcp_out_fastopen; /* TCP fast open */ 1072 #ifdef USE_TCP_WRAPPERS 1073 extern uschar *tcp_wrappers_daemon_name; /* tcpwrappers daemon lookup name */ 1074 #endif 1075 extern int test_harness_load_avg; /* For use when testing */ 1076 extern int thismessage_size_limit; /* Limit for this message */ 1077 extern int timeout_frozen_after; /* Max time to keep frozen messages */ 1078 #ifdef MEASURE_TIMING 1079 extern struct timeval timestamp_startup; /* For development measurements */ 1080 #endif 1081 1082 extern uschar *transport_name; /* Name of transport last started */ 1083 extern int transport_count; /* Count of bytes transported */ 1084 extern int transport_newlines; /* Accurate count of number of newline chars transported */ 1085 extern const uschar **transport_filter_argv; /* For on-the-fly filtering */ 1086 extern int transport_filter_timeout; /* Timeout for same */ 1087 1088 extern transport_info transports_available[]; /* Vector of available transports */ 1089 extern transport_instance *transports; /* Chain of instantiated transports */ 1090 extern transport_instance transport_defaults; /* Default values */ 1091 1092 extern int transport_write_timeout;/* Set to time out individual writes */ 1093 1094 extern tree_node *tree_dns_fails; /* Tree of DNS lookup failures */ 1095 extern tree_node *tree_duplicates; /* Tree of duplicate addresses */ 1096 extern tree_node *tree_nonrecipients; /* Tree of nonrecipient addresses */ 1097 extern tree_node *tree_unusable; /* Tree of unusable addresses */ 1098 1099 extern gid_t *trusted_groups; /* List of trusted groups */ 1100 extern uid_t *trusted_users; /* List of trusted users */ 1101 extern uschar *timezone_string; /* Required timezone setting */ 1102 1103 extern uschar *unknown_login; /* To use when login id unknown */ 1104 extern uschar *unknown_username; /* Ditto */ 1105 extern uschar *untrusted_set_sender; /* Let untrusted users set these senders */ 1106 extern uschar *uucp_from_pattern; /* For recognizing "From " lines */ 1107 extern uschar *uucp_from_sender; /* For building the sender */ 1108 1109 extern uschar *warn_message_file; /* Template for warning messages */ 1110 extern uschar *warnmsg_delay; /* String form of delay time */ 1111 extern uschar *warnmsg_recipients; /* Recipients of warning message */ 1112 extern BOOL write_rejectlog; /* Control of reject logging */ 1113 1114 extern uschar *verify_mode; /* Running a router in verify mode */ 1115 extern uschar *version_copyright; /* Copyright notice */ 1116 extern uschar *version_date; /* Date of compilation */ 1117 extern uschar *version_cnumber; /* Compile number */ 1118 extern uschar *version_string; /* Version string */ 1119 1120 extern int warning_count; /* Delay warnings sent for this msg */ 1121 1122 /* End of globals.h */ 1123