/* * Copyright (c) 2012, Vsevolod Stakhov * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are met: * * Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY AUTHOR ''AS IS'' AND ANY * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE * DISCLAIMED. IN NO EVENT SHALL AUTHOR BE LIABLE FOR ANY * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include "config.h" #include "main.h" #include "cfg_file.h" #include "util.h" #include "lmtp.h" #include "lmtp_proto.h" /* Max line size as it is defined in rfc2822 */ #define OUTBUFSIZ 1000 /* LMTP commands */ static f_str_t lhlo_command = { .begin = "LHLO", .len = sizeof ("LHLO") - 1 }; static f_str_t mail_command = { .begin = "MAIL FROM:", .len = sizeof ("MAIL FROM:") - 1 }; static f_str_t rcpt_command = { .begin = "RCPT TO:", .len = sizeof ("RCPT TO:") - 1 }; static f_str_t data_command = { .begin = "DATA", .len = sizeof ("DATA") - 1 }; static f_str_t data_dot = { .begin = ".\r\n", .len = sizeof (".\r\n") - 1 }; static const gchar *mail_regexp = "[a-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\\.[a-z0-9!#$%&'*+/=?^_`{|}~-]+)*@(?:[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?"; static GRegex *mail_re = NULL; /* * Extract e-mail from read line * return <> if no valid address detected */ static gchar * extract_mail (memory_pool_t * pool, f_str_t * line) { GError *err = NULL; gchar *match; GMatchInfo *info; if (mail_re == NULL) { /* Compile regexp */ mail_re = g_regex_new (mail_regexp, G_REGEX_RAW, 0, &err); } if (g_regex_match_full (mail_re, line->begin, line->len, 0, 0, &info, NULL) == TRUE) { match = memory_pool_strdup (pool, g_match_info_fetch (info, 0)); g_match_info_free (info); } else { match = "<>"; } return match; } static gboolean out_lmtp_reply (struct worker_task *task, gint code, gchar *rcode, gchar *msg) { gchar outbuf[OUTBUFSIZ]; gint r; if (*rcode == '\0') { r = rspamd_snprintf (outbuf, OUTBUFSIZ, "%d %s\r\n", code, msg); } else { r = rspamd_snprintf (outbuf, OUTBUFSIZ, "%d %s %s\r\n", code, rcode, msg); } if (! rspamd_dispatcher_write (task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } return TRUE; } gint read_lmtp_input_line (struct rspamd_lmtp_proto *lmtp, f_str_t * line) { gchar *c, *rcpt; f_str_t fstr; gint i = 0, l = 0, size; switch (lmtp->state) { case LMTP_READ_LHLO: /* Search LHLO line */ if ((i = fstrstri (line, &lhlo_command)) == -1) { msg_info ("LHLO expected but not found"); (void)out_lmtp_reply (lmtp->task, LMTP_BAD_CMD, "5.0.0", "Need LHLO here"); return -1; } else { i += lhlo_command.len; c = line->begin + i; /* Skip spaces */ while (g_ascii_isspace (*c) && i < (gint)line->len) { i++; c++; } lmtp->task->helo = memory_pool_alloc (lmtp->task->task_pool, line->len - i + 1); /* Strlcpy makes string null terminated by design */ rspamd_strlcpy (lmtp->task->helo, c, line->len - i + 1); lmtp->state = LMTP_READ_FROM; if (! out_lmtp_reply (lmtp->task, LMTP_OK, "", "Ok")) { return -1; } return 0; } break; case LMTP_READ_FROM: /* Search MAIL FROM: line */ if ((i = fstrstri (line, &mail_command)) == -1) { msg_info ("MAIL expected but not found"); (void)out_lmtp_reply (lmtp->task, LMTP_BAD_CMD, "5.0.0", "Need MAIL here"); return -1; } else { i += mail_command.len; c = line->begin + i; fstr.begin = line->begin + i; fstr.len = line->len - i; lmtp->task->from = extract_mail (lmtp->task->task_pool, &fstr); lmtp->state = LMTP_READ_RCPT; if (! out_lmtp_reply (lmtp->task, LMTP_OK, "2.1.0", "Sender ok")) { return -1; } return 0; } break; case LMTP_READ_RCPT: /* Search RCPT_TO: line */ if ((i = fstrstri (line, &rcpt_command)) == -1) { msg_info ("RCPT expected but not found"); (void)out_lmtp_reply (lmtp->task, LMTP_NO_RCPT, "5.5.4", "Need RCPT here"); return -1; } else { i += rcpt_command.len; c = line->begin + i; fstr.begin = line->begin + i; fstr.len = line->len - i; rcpt = extract_mail (lmtp->task->task_pool, &fstr); if (*rcpt == '<' && *(rcpt + 1) == '>') { /* Invalid or empty rcpt not allowed */ msg_info ("bad recipient"); (void)out_lmtp_reply (lmtp->task, LMTP_NO_RCPT, "5.5.4", "Bad recipient"); return -1; } /* Strlcpy makes string null terminated by design */ lmtp->task->rcpt = g_list_prepend (lmtp->task->rcpt, rcpt); lmtp->state = LMTP_READ_DATA; if (! out_lmtp_reply (lmtp->task, LMTP_OK, "2.1.0", "Recipient ok")) { return -1; } return 0; } break; case LMTP_READ_DATA: /* Search DATA line */ if ((i = fstrstri (line, &data_command)) == -1) { msg_info ("DATA expected but not found"); (void)out_lmtp_reply (lmtp->task, LMTP_BAD_CMD, "5.0.0", "Need DATA here"); return -1; } else { i += data_command.len; c = line->begin + i; /* Skip spaces */ while (g_ascii_isspace (*c++)) { i++; } rcpt = memory_pool_alloc (lmtp->task->task_pool, line->len - i + 1); /* Strlcpy makes string null terminated by design */ rspamd_strlcpy (rcpt, c, line->len - i + 1); lmtp->task->rcpt = g_list_prepend (lmtp->task->rcpt, rcpt); lmtp->state = LMTP_READ_MESSAGE; if (! out_lmtp_reply (lmtp->task, LMTP_DATA, "", "Enter message, ending with \".\" on a line by itself")) { return -1; } lmtp->task->msg = fstralloc (lmtp->task->task_pool, BUFSIZ); return 0; } break; case LMTP_READ_MESSAGE: if (strncmp (line->begin, data_dot.begin, line->len) == 0) { lmtp->state = LMTP_READ_DOT; lmtp->task->state = READ_MESSAGE; return 0; } else { l = lmtp->task->msg->len; size = lmtp->task->msg->size; if ((gint)(l + line->len) > size) { /* Grow buffer */ if ((gint)line->len > size) { size += line->len << 1; } else { /* size *= 2 */ size <<= 1; } lmtp->task->msg = fstrgrow (lmtp->task->task_pool, lmtp->task->msg, size); } fstrcat (lmtp->task->msg, line); return 0; } break; case LMTP_READ_DOT: /* We have some input after reading dot, close connection as we have no currently support of multiply * messages per session */ if (! out_lmtp_reply (lmtp->task, LMTP_QUIT, "", "Bye")) { return -1; } return 0; break; } return 0; } struct mta_callback_data { struct worker_task *task; rspamd_io_dispatcher_t *dispatcher; enum { LMTP_WANT_GREETING, LMTP_WANT_MAIL, LMTP_WANT_RCPT, LMTP_WANT_DATA, LMTP_WANT_DOT, LMTP_WANT_CLOSING, } state; }; static gboolean parse_mta_str (f_str_t * in, struct mta_callback_data *cd) { gint r; static f_str_t okres1 = { .begin = "250 ", .len = sizeof ("250 ") - 1, } , okres2 = { .begin = "220 ",.len = sizeof ("220 ") - 1,} , datares = { .begin = "354 ",.len = sizeof ("354 ") - 1,}; switch (cd->state) { case LMTP_WANT_GREETING: case LMTP_WANT_MAIL: case LMTP_WANT_RCPT: case LMTP_WANT_DATA: case LMTP_WANT_CLOSING: r = fstrstr (in, &okres1); if (r == -1) { r = fstrstr (in, &okres2); } break; case LMTP_WANT_DOT: r = fstrstr (in, &datares); break; } return r != -1; } static void close_mta_connection (struct mta_callback_data *cd, gboolean is_success) { cd->task->state = CLOSING_CONNECTION; if (is_success) { if (! out_lmtp_reply (cd->task, LMTP_OK, "", "Delivery completed")) { return; } } else { if (! out_lmtp_reply (cd->task, LMTP_FAILURE, "", "Delivery failure")) { return; } } rspamd_remove_dispatcher (cd->dispatcher); } /* * Callback that is called when there is data to read in buffer */ static gboolean mta_read_socket (f_str_t * in, void *arg) { struct mta_callback_data *cd = (struct mta_callback_data *)arg; gchar outbuf[1024], *hostbuf, *c; gint hostmax, r; GList *cur; static f_str_t contres1 = { .begin = "250-", .len = sizeof ("250-") - 1, } , contres2 = { .begin = "220-",.len = sizeof ("220-") - 1,}; if (fstrstr (in, &contres1) != -1 || fstrstr (in, &contres2) != -1) { /* Skip such lines */ return TRUE; } switch (cd->state) { case LMTP_WANT_GREETING: if (!parse_mta_str (in, cd)) { msg_warn ("got bad greeting"); close_mta_connection (cd, FALSE); return FALSE; } hostmax = sysconf (_SC_HOST_NAME_MAX) + 1; hostbuf = alloca (hostmax); gethostname (hostbuf, hostmax); hostbuf[hostmax - 1] = '\0'; if (cd->task->cfg->deliver_lmtp) { r = rspamd_snprintf (outbuf, sizeof (outbuf), "LHLO %s" CRLF, hostbuf); } else { r = rspamd_snprintf (outbuf, sizeof (outbuf), "HELO %s" CRLF, hostbuf); } if (! rspamd_dispatcher_write (cd->task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } cd->state = LMTP_WANT_MAIL; break; case LMTP_WANT_MAIL: if (!parse_mta_str (in, cd)) { msg_warn ("got bad helo"); close_mta_connection (cd, FALSE); return FALSE; } r = rspamd_snprintf (outbuf, sizeof (outbuf), "MAIL FROM: <%s>" CRLF, cd->task->from); if (! rspamd_dispatcher_write (cd->task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } cd->state = LMTP_WANT_RCPT; break; case LMTP_WANT_RCPT: if (!parse_mta_str (in, cd)) { msg_warn ("got bad mail from"); close_mta_connection (cd, FALSE); return FALSE; } cur = g_list_first (cd->task->rcpt); r = 0; while (cur) { r += rspamd_snprintf (outbuf + r, sizeof (outbuf) - r, "RCPT TO: <%s>" CRLF, (gchar *)cur->data); cur = g_list_next (cur); } if (! rspamd_dispatcher_write (cd->task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } cd->state = LMTP_WANT_DATA; break; case LMTP_WANT_DATA: if (!parse_mta_str (in, cd)) { msg_warn ("got bad rcpt"); close_mta_connection (cd, FALSE); return FALSE; } r = rspamd_snprintf (outbuf, sizeof (outbuf), "DATA" CRLF); if (! rspamd_dispatcher_write (cd->task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } cd->state = LMTP_WANT_DOT; break; case LMTP_WANT_DOT: if (!parse_mta_str (in, cd)) { msg_warn ("got bad data"); close_mta_connection (cd, FALSE); return FALSE; } c = g_mime_object_to_string ((GMimeObject *) cd->task->message); r = strlen (c); if (! rspamd_dispatcher_write (cd->task->dispatcher, c, r, TRUE, TRUE)) { return FALSE; } memory_pool_add_destructor (cd->task->task_pool, (pool_destruct_func) g_free, c); r = rspamd_snprintf (outbuf, sizeof (outbuf), CRLF "." CRLF); if (! rspamd_dispatcher_write (cd->task->dispatcher, outbuf, r, FALSE, FALSE)) { return FALSE; } cd->state = LMTP_WANT_CLOSING; case LMTP_WANT_CLOSING: if (!parse_mta_str (in, cd)) { msg_warn ("message not delivered"); close_mta_connection (cd, FALSE); return FALSE; } close_mta_connection (cd, TRUE); break; } return TRUE; } /* * Called if something goes wrong */ static void mta_err_socket (GError * err, void *arg) { struct mta_callback_data *cd = (struct mta_callback_data *)arg; msg_info ("abnormaly terminating connection with MTA"); close_mta_connection (cd, FALSE); } /* * Deliver mail via smtp or lmtp */ static gint lmtp_deliver_mta (struct worker_task *task) { gint sock; struct sockaddr_un *un; struct mta_callback_data *cd; if (task->cfg->deliver_family == AF_UNIX) { un = alloca (sizeof (struct sockaddr_un)); sock = make_unix_socket (task->cfg->deliver_host, un, FALSE, TRUE); } else { sock = make_tcp_socket (&task->cfg->deliver_addr, task->cfg->deliver_port, FALSE, TRUE); } if (sock == -1) { msg_warn ("cannot create socket for %s, %s", task->cfg->deliver_host, strerror (errno)); } cd = memory_pool_alloc (task->task_pool, sizeof (struct mta_callback_data)); cd->task = task; cd->state = LMTP_WANT_GREETING; cd->dispatcher = rspamd_create_dispatcher (task->ev_base, sock, BUFFER_LINE, mta_read_socket, NULL, mta_err_socket, NULL, (void *)cd); return 0; } static gchar * format_lda_args (struct worker_task *task) { gchar *res, *c, *r; size_t len; GList *rcpt; gboolean got_args = FALSE; c = task->cfg->deliver_agent_path; /* Find first arg */ if ((c = strchr (c, ' ')) == NULL) { return task->cfg->deliver_agent_path; } /* Calculate length of result string */ len = strlen (task->cfg->deliver_agent_path); while (*c) { if (*c == '%') { c++; switch (*c) { case 'f': /* Insert from */ len += strlen (task->from) - 2; break; case 'r': /* Insert list of recipients */ rcpt = g_list_first (task->rcpt); len -= 2; while (rcpt) { len += strlen ((gchar *)rcpt->data) + 1; rcpt = g_list_next (rcpt); } break; } } c++; len++; } res = memory_pool_alloc (task->task_pool, len + 1); r = res; c = task->cfg->deliver_agent_path; while (*c) { if (*c == ' ') { got_args = TRUE; } if (got_args && *c == '%') { switch (*(c + 1)) { case 'f': /* Insert from */ c += 2; len = strlen (task->from); memcpy (r, task->from, len); r += len; break; case 'r': /* Insert list of recipients */ c += 2; rcpt = g_list_first (task->rcpt); while (rcpt) { len = strlen ((gchar *)rcpt->data) + 1; memcpy (r, rcpt->data, len); r += len; *r++ = ' '; rcpt = g_list_next (rcpt); } break; default: *r = *c; r++; c++; break; } } else { *r = *c; r++; c++; } } return res; } static gint lmtp_deliver_lda (struct worker_task *task) { gchar *args, **argv; GMimeStream *stream; gint rc, ecode, p[2], argc; pid_t cpid, pid; if ((args = format_lda_args (task)) == NULL) { return -1; } /* Format arguments in shell style */ if (!g_shell_parse_argv (args, &argc, &argv, NULL)) { msg_info ("cannot parse arguments"); return -1; } if (pipe (p) == -1) { g_strfreev (argv); msg_info ("cannot open pipe: %s", strerror (errno)); return -1; } /* Fork to exec LDA */ #ifdef HAVE_VFORK if ((cpid = vfork ()) == -1) { g_strfreev (argv); msg_info ("cannot fork: %s", strerror (errno)); return -1; } #else if ((cpid = fork ()) == -1) { g_strfreev (argv); msg_info ("cannot fork: %s", strerror (errno)); return -1; } #endif if (cpid == 0) { /* Child process, close write pipe and keep only read one */ close (p[1]); /* Set standart IO descriptors */ if (p[0] != STDIN_FILENO) { (void)dup2 (p[0], STDIN_FILENO); (void)close (p[0]); } execv (argv[0], argv); _exit (127); } close (p[0]); stream = g_mime_stream_fs_new (p[1]); if (g_mime_object_write_to_stream ((GMimeObject *) task->message, stream) == -1) { g_strfreev (argv); msg_info ("cannot write stream to lda"); return -1; } g_object_unref (stream); close (p[1]); #if defined(HAVE_WAIT4) do { pid = wait4 (cpid, &rc, 0, NULL); } while (pid == -1 && errno == EINTR); #elif defined(HAVE_WAITPID) do { pid = waitpid (cpid, &rc, 0); } while (pid == -1 && errno == EINTR); #else # error wait mechanisms are undefined #endif if (rc == -1) { g_strfreev (argv); msg_info ("lda returned error code"); return -1; } else if (WIFEXITED (rc)) { ecode = WEXITSTATUS (rc); if (ecode == 0) { g_strfreev (argv); return 0; } else { g_strfreev (argv); msg_info ("lda returned error code %d", ecode); return -1; } } g_strfreev (argv); return -1; } gint lmtp_deliver_message (struct worker_task *task) { if (task->cfg->deliver_agent_path != NULL) { /* Do deliver to LDA */ return lmtp_deliver_lda (task); } else { /* XXX: do lmtp/smtp client */ return -1; } } gint write_lmtp_reply (struct rspamd_lmtp_proto *lmtp) { gint r; struct worker_task *task = lmtp->task; debug_task ("writing reply to client"); if (lmtp->task->error_code != 0) { if (! out_lmtp_reply (lmtp->task, lmtp->task->error_code, "", lmtp->task->last_error)) { return -1; } } else { /* Do delivery */ if ((r = lmtp_deliver_message (lmtp->task)) == -1) { out_lmtp_reply (lmtp->task, LMTP_FAILURE, "", "Delivery failure"); return -1; } else if (r == 0) { if (! out_lmtp_reply (lmtp->task, LMTP_OK, "", "Delivery completed")) { return -1; } } else { return 1; } } return 0; } /* * vi:ts=4 */