#include <sys_defs.h>
#include <split_at.h>
#include <mail_params.h>
#include <quote_821_local.h>
#include <milter.h>
#include <smtpd.h>
#include <smtpd_sasl_glue.h>
#include <smtpd_resolve.h>
#include <smtpd_milter.h>
#define STR(x) vstring_str(x)
const char *smtpd_milter_eval(const char *name, void *ptr)
{
SMTPD_STATE *state = (SMTPD_STATE *) ptr;
const RESOLVE_REPLY *reply;
char *cp;
if (state->expand_buf == 0)
state->expand_buf = vstring_alloc(10);
if (*name != '{') {
vstring_sprintf(state->expand_buf, "{%s}", name);
name = STR(state->expand_buf);
}
if (strcmp(name, S8_MAC_DAEMON_NAME) == 0)
return (var_milt_daemon_name);
if (strcmp(name, S8_MAC_V) == 0)
return (var_milt_v);
if (strcmp(name, S8_MAC__) == 0) {
vstring_sprintf(state->expand_buf, "%s [%s]",
state->reverse_name, state->addr);
if (strcasecmp(state->name, state->reverse_name) != 0)
vstring_strcat(state->expand_buf, " (may be forged)");
return (STR(state->expand_buf));
}
if (strcmp(name, S8_MAC_J) == 0)
return (var_myhostname);
if (strcmp(name, S8_MAC_CLIENT_ADDR) == 0)
return (state->rfc_addr);
if (strcmp(name, S8_MAC_CLIENT_PORT) == 0)
return (strcmp(state->port, CLIENT_PORT_UNKNOWN) ? state->port : "0");
if (strcmp(name, S8_MAC_CLIENT_CONN) == 0) {
vstring_sprintf(state->expand_buf, "%d", state->conn_count);
return (STR(state->expand_buf));
}
if (strcmp(name, S8_MAC_CLIENT_NAME) == 0)
return (state->name);
if (strcmp(name, S8_MAC_CLIENT_PTR) == 0)
return (state->reverse_name);
if (strcmp(name, S8_MAC_CLIENT_RES) == 0)
return (state->name_status == SMTPD_PEER_CODE_OK ? "OK" :
state->name_status == SMTPD_PEER_CODE_FORGED ? "FORGED" :
state->name_status == SMTPD_PEER_CODE_TEMP ? "TEMP" : "FAIL");
#ifdef USE_TLS
#define IF_ENCRYPTED(x) (state->tls_context ? (x) : 0)
#define IF_TRUSTED(x) (TLS_CERT_IS_TRUSTED(state->tls_context) ? (x) : 0)
if (strcmp(name, S8_MAC_TLS_VERSION) == 0)
return (IF_ENCRYPTED(state->tls_context->protocol));
if (strcmp(name, S8_MAC_CIPHER) == 0)
return (IF_ENCRYPTED(state->tls_context->cipher_name));
if (strcmp(name, S8_MAC_CIPHER_BITS) == 0) {
if (state->tls_context == 0)
return (0);
vstring_sprintf(state->expand_buf, "%d",
IF_ENCRYPTED(state->tls_context->cipher_usebits));
return (STR(state->expand_buf));
}
if (strcmp(name, S8_MAC_CERT_SUBJECT) == 0)
return (IF_TRUSTED(state->tls_context->peer_CN));
if (strcmp(name, S8_MAC_CERT_ISSUER) == 0)
return (IF_TRUSTED(state->tls_context->issuer_CN));
#endif
#define IF_SASL_ENABLED(s) (smtpd_sasl_is_active(state) && (s) ? (s) : 0)
if (strcmp(name, S8_MAC_I) == 0)
return (state->queue_id);
#ifdef USE_SASL_AUTH
if (strcmp(name, S8_MAC_AUTH_TYPE) == 0)
return (IF_SASL_ENABLED(state->sasl_method));
if (strcmp(name, S8_MAC_AUTH_AUTHEN) == 0)
return (IF_SASL_ENABLED(state->sasl_username));
if (strcmp(name, S8_MAC_AUTH_AUTHOR) == 0)
return (IF_SASL_ENABLED(state->sasl_sender));
#endif
if (strcmp(name, S8_MAC_MAIL_ADDR) == 0) {
if (state->sender == 0)
return (0);
if (state->sender[0] == 0)
return ("");
reply = smtpd_resolve_addr(state->sender);
if (STR(reply->recipient)[0])
quote_821_local(state->expand_buf, STR(reply->recipient));
else
vstring_strcpy(state->expand_buf, STR(reply->recipient));
return (STR(state->expand_buf));
}
if (strcmp(name, S8_MAC_MAIL_HOST) == 0) {
if (state->sender == 0)
return (0);
reply = smtpd_resolve_addr(state->sender);
return (STR(reply->nexthop));
}
if (strcmp(name, S8_MAC_MAIL_MAILER) == 0) {
if (state->sender == 0)
return (0);
reply = smtpd_resolve_addr(state->sender);
return (STR(reply->transport));
}
if (strcmp(name, S8_MAC_RCPT_ADDR) == 0) {
if (state->recipient == 0)
return (0);
if (state->recipient[0] == 0)
return ("");
if (state->milter_reject_text) {
vstring_strcpy(state->expand_buf, state->milter_reject_text + 4);
cp = split_at(STR(state->expand_buf), ' ');
return (cp ? split_at(cp, ' ') : cp);
}
reply = smtpd_resolve_addr(state->recipient);
if (STR(reply->recipient)[0])
quote_821_local(state->expand_buf, STR(reply->recipient));
else
vstring_strcpy(state->expand_buf, STR(reply->recipient));
return (STR(state->expand_buf));
}
if (strcmp(name, S8_MAC_RCPT_HOST) == 0) {
if (state->recipient == 0)
return (0);
if (state->milter_reject_text) {
vstring_strcpy(state->expand_buf, state->milter_reject_text + 4);
(void) split_at(STR(state->expand_buf), ' ');
return (STR(state->expand_buf));
}
reply = smtpd_resolve_addr(state->recipient);
return (STR(reply->nexthop));
}
if (strcmp(name, S8_MAC_RCPT_MAILER) == 0) {
if (state->recipient == 0)
return (0);
if (state->milter_reject_text)
return (S8_RCPT_MAILER_ERROR);
reply = smtpd_resolve_addr(state->recipient);
return (STR(reply->transport));
}
return (0);
}