madscientist
/
SNFMilter
ウォッチ 1
スター 0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
1 コミット
1 ブランチ
ツリー: 5399b9b1be
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'5399b9b1be' から
${ noResults }
SNFMilter/SNFMilter.cpp.new

SNFMilter.cpp.new 59KB
Raw 通常表示 履歴

setup git-svn-id: https://svn.microneil.com/svn/SNFMilter/trunk@1 2c985dca-31e6-41a4-b4a2-d8f5b7f8e074
15年前
 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315 
  1. // SNFMilter.cpp

  2. // Copyright (C) 2008 ARM Research Labs, LLC.

  3. //

  4. // This file contains the "guts" of the SNFMilter interface. Specifically,

  5. // the SNFMilter() function.

  6. 

  7. #include <sys/types.h>

  8. #include <sys/stat.h>

  9. #include <errno.h>

  10. #include <unistd.h>

  11. #include <grp.h>

  12. 

  13. #include "../SNF_Service/SNFMulti.hpp"

  14. #include "../SNF_Service/configuration.hpp"

  15. #include "SNFMilter.hpp"

  16. #include "config.h"

  17. 

  18. #include <syslog.h>

  19. #include <sstream>

  20. 

  21. #if SMFI_VERSION > 3

  22. #define NEW_LIBMILTER

  23. #endif

  24. 

  25. SNFMilterContextPool* MilterContexts = 0;                                       // The global contexts handle.

  26. bool MilterDebugMode;                                                           // True if debug mode is on.

  27. 

  28. /// Get the connection context object.

  29. //

  30. // \param[in] Ctx is the libmilter context object.

  31. //

  32. // \returns the pointer to the connection context object.

  33. //

  34. // \throws runtime_error if the obtained pointer is 0.

  35. //

  36. SNFMilterContext *

  37. getContextFromCtx(SMFICTX* Ctx) {

  38.     SNFMilterContext* Context = (SNFMilterContext*) smfi_getpriv(Ctx);

  39.     if(0 == Context) throw runtime_error("Got NULL from snfi_getpriv()");

  40.     return Context;

  41. }

  42. 

  43. // Function to output an info message.

  44. void logInfo(const string ContextName, int Code, std::string Message) {

  45.     cout << ContextName << " (code " << Code << "): " << Message << endl;

  46. #if 0

  47.     syslog(LOG_MAIL | LOG_DEBUG, "%s", Message.c_str());                        // Output to system mail log.

  48. #endif

  49.     MilterContexts->logThisInfo(ContextName, Code, Message);                    // Log message.

  50. }

  51. 

  52. // Function to output an error message.

  53. void logError(const string &ContextName, const int &Code, const std::string &Message) {

  54.     cout << ContextName << " (code " << Code << "): " << Message << endl;

  55. #if 0

  56.     syslog(LOG_MAIL | LOG_DEBUG, "%s", Message.c_str());                        // Output to system mail log.

  57. #endif

  58.     MilterContexts->logThisError(ContextName, Code, Message);                   // Log message.

  59. }

  60. 

  61. class ResultActionHandler : public Configurator {

  62. private:

  63.     SNFMilterEngine* Target;

  64. 

  65. public:

  66.     ResultActionHandler(SNFMilterEngine* T) : Target(T) {}

  67.     void operator()(ConfigurationElement& E, ConfigurationData& D) {

  68.         Target->setResultAction(

  69.                                 Code,

  70.                                 (Action >= Allow && Action <= Quarantine) ?

  71.                                 static_cast<SNFMilterAction>(Action)

  72.                                 : Allow

  73.                                 );

  74.     }

  75.     int Code;

  76.     int Action;

  77. };

  78. 

  79. const int NoSuchCode = -1;                                                      // Magic number for no such code

  80. const int NoSuchAction = -1;                                                    // Magic number for no such action

  81. 

  82. void SNFMilterEngine::readConfiguration() {                                     // Parse the configuration.

  83.     string NewConfiguration = myRulebase->PlatformConfiguration();              // Get the latest configuration.

  84.     if(0 != RunningConfiguration.compare(NewConfiguration)) {                   // If it does not match, read it!

  85.         RunningConfiguration = NewConfiguration;                                // Capture the latest.

  86.         for(int i = 0; i < ResultCodesCount; i++) ResultActions[i] = Allow;     // Init Result/Action config.

  87.         ResultActionHandler ResultActionConfigurator(this);                     // Create a Result/Action handler.

  88.         ConfigurationElement Reader("milter");                                  // Create a configuration reader.

  89.         Reader

  90.           .Element("connect")

  91.             .Element("white")

  92.               .Attribute("action", reinterpret_cast<int&>(WhiteAction), static_cast<int>(Allow))

  93.                  .Mnemonic("Allow", AllowActionMnemonic)

  94.                  .Mnemonic("Accept", AcceptActionMnemonic)

  95.                  .Mnemonic("Retry", RetryActionMnemonic)

  96.                  .Mnemonic("Reject", RejectActionMnemonic)

  97.                  .Mnemonic("Discard", DiscardActionMnemonic)

  98.                  .Mnemonic("Quarantine", QuarantineActionMnemonic)

  99.             .End("white")

  100.             .Element("caution")

  101.               .Attribute("action", reinterpret_cast<int&>(CautionAction), static_cast<int>(Allow))

  102.                  .Mnemonic("Allow", AllowActionMnemonic)

  103.                  .Mnemonic("Accept", AcceptActionMnemonic)

  104.                  .Mnemonic("Retry", RetryActionMnemonic)

  105.                  .Mnemonic("Reject", RejectActionMnemonic)

  106.                  .Mnemonic("Discard", DiscardActionMnemonic)

  107.                  .Mnemonic("Quarantine", QuarantineActionMnemonic)

  108.             .End("caution")

  109.             .Element("black")

  110.               .Attribute("action", reinterpret_cast<int&>(BlackAction), static_cast<int>(Allow))

  111.                  .Mnemonic("Allow", AllowActionMnemonic)

  112.                  .Mnemonic("Accept", AcceptActionMnemonic)

  113.                  .Mnemonic("Retry", RetryActionMnemonic)

  114.                  .Mnemonic("Reject", RejectActionMnemonic)

  115.                  .Mnemonic("Discard", DiscardActionMnemonic)

  116.                  .Mnemonic("Quarantine", QuarantineActionMnemonic)

  117.             .End("black")

  118.             .Element("truncate")

  119.               .Attribute("action", reinterpret_cast<int&>(TruncateAction), static_cast<int>(Allow))

  120.                  .Mnemonic("Allow", AllowActionMnemonic)

  121.                  .Mnemonic("Accept", AcceptActionMnemonic)

  122.                  .Mnemonic("Retry", RetryActionMnemonic)

  123.                  .Mnemonic("Reject", RejectActionMnemonic)

  124.                  .Mnemonic("Discard", DiscardActionMnemonic)

  125.                  .Mnemonic("Quarantine", QuarantineActionMnemonic)

  126.             .End("truncate")

  127.           .End("connect")

  128.           .Element("scan")

  129.             .Element("result")

  130.               .atEndCall(ResultActionConfigurator)

  131.               .Attribute("code", ResultActionConfigurator.Code, NoSuchCode)

  132.               .Attribute("action", ResultActionConfigurator.Action, NoSuchAction)

  133.             .End("result")

  134.           .End("scan")

  135.         .End("milter");

  136. 

  137.         ConfigurationData ConfigurationData(                                    // Convert our configuration string

  138.                                             NewConfiguration.c_str(),           // to a configuration data buffer.

  139.                                             NewConfiguration.length());

  140. 

  141.         Reader.initialize();                                                    // Initialize the defaults.

  142.         Reader.interpret(ConfigurationData);                                    // Read the new configuration.

  143.     }

  144. 

  145. }

  146. 

  147. void SNFMilterEngine::setResultAction(int Result, SNFMilterAction Action) {     // Set a result / action pair.

  148.     if(

  149.        0 <= Result &&

  150.        ResultCodesCount > Result                                                // If the Result code is in

  151.        ) { ResultActions[Result] = Action; }                                    // range then set the action.

  152. }

  153. 

  154. void SNFMilterEngine::checkConfiguration() {                                    // Reload the config if it is old.

  155.     if(ConfigurationCheckTime.isExpired()) readConfiguration();

  156. }

  157. 

  158. SNFMilterEngine::SNFMilterEngine(snf_RulebaseHandler* R) :                      // Construct the engine.

  159.     myRulebase(R),                                                              // Remember our rulebase.

  160.     myEngine(0),                                                                // We need to set this later.

  161.     WhiteAction(Allow),                                                         // Initialize our default actions.

  162.     CautionAction(Allow),

  163.     BlackAction(Allow),

  164.     TruncateAction(Allow),

  165.     ConfigurationCheckTime(ConfigurationLifetime)

  166. {

  167.     for(int i = 0; i < ResultCodesCount; i++) ResultActions[i] = Allow;         // Init default Action config.

  168.     myEngine = new snf_EngineHandler();                                         // Create an engine handler.

  169.     myEngine->open(myRulebase);                                                 // Connect it to the rulebase.

  170.     readConfiguration();                                                        // Read our configuration.

  171. }

  172. 

  173. SNFMilterEngine::~SNFMilterEngine() {                                           // Destroy the engine.

  174.     try {

  175.         ScopeMutex EngineLock(ConfigMutex);                                     // Don't die while scanning.

  176.         if(myEngine) {                                                          // If we're not dead then die.

  177.             myEngine->close();                                                  // Close the engine.

  178.             delete myEngine;                                                    // Delete it.

  179.             myEngine = 0;                                                       // Forget it.

  180.             myRulebase = 0;                                                     // Forget (don't delete) this too.

  181.         }

  182.     }

  183.     catch(...) {}                                                               // Silently capture exceptions.

  184. }

  185. 

  186. SNFMilterAction SNFMilterEngine::scanIP(unsigned long int IP) {                 // Scans an IP.

  187.     IPTestRecord Tester(IP);                                                    // Make up a test record for this IP.

  188.     ScopeMutex ConfigurationLock(ConfigMutex);                                  // Lock our configuration.

  189.     if(0 == myEngine) return Allow;                                             // Skip safely if we're down.

  190.     checkConfiguration();                                                       // Re-read our config if it is old.

  191.     myRulebase->performIPTest(Tester);                                          // Tun it past the engine.

  192.     SNFMilterAction TestResult = Allow;                                         // Allow by default.

  193.     switch(Tester.R) {                                                          // Convert the result to an action.

  194.     case White: { TestResult = WhiteAction; break; }                            // If the IP scan range is recognized

  195.     case Caution: { TestResult = CautionAction; break; }                        // in our configuration then we will

  196.     case Black: { TestResult = BlackAction; break; }                            // return the action code that is

  197.     case Truncate: { TestResult = TruncateAction; break; }                      // configured. Otherwise we will return

  198.     }                                                                           // the default "Allow" action.

  199.     return TestResult;                                                          // Tell them what we've got.

  200. }

  201. 

  202. SNFMilterAction SNFMilterEngine::scanMessage(                                   // Scans a message.

  203.                                              const unsigned char* bfr,          // Requires a pointer to the buffer.

  204.                                              int length) {                      // Requires the buffer length.

  205.     ScopeMutex ConfigurationLock(ConfigMutex);                                  // Lock the configuration.

  206.     if(0 == myEngine) return Allow;                                             // Skip safely if we're down.

  207.     checkConfiguration();                                                       // Re-read our config if it is old.

  208.     int R = myEngine->scanMessage(bfr, length, "", 0);                          // Scan the message & get the result.

  209.     if(0 > R || ResultCodesCount <= R) return Error;                            // If R is out of range, return Error.

  210.     return ResultActions[R];                                                    // Return the translated action.

  211. }

  212. 

  213. string SNFMilterEngine::XHeaders() {                                            // Return X headers from last scan.

  214.     ScopeMutex EngineLock(ConfigMutex);                                         // Use myEngine safely.

  215.     if(0 == myEngine) return "";                                                // Return no headers if dead.

  216.     return myEngine->getXHDRs();                                                // Simply return them.

  217. }

  218. 

  219. //// SNFMilterContext

  220. 

  221. SNFMilterContext::SNFMilterContext(snf_RulebaseHandler *myRulebase) :

  222.     SkipReturn(SMFIS_CONTINUE),

  223.     milterEngine(myRulebase),

  224.     MessageData(MailBufferReserveSize) {}

  225. 

  226. SNFMilterContext::~SNFMilterContext() {}

  227. 

  228. /// Return the local received header.

  229. //

  230. // \returns the local received header.

  231. //

  232. string

  233. SNFMilterContext::getLocalReceivedHeader() {

  234. 

  235.     string locHeader;

  236. 

  237.     locHeader = "Received: from <" + ConnectionData.HostName;

  238.     locHeader += "> [" + (string) ConnectionData.HostIP;

  239.     locHeader += "] by " PACKAGE_NAME;

  240.     return locHeader;

  241. }

  242. 

  243. /// Map return value from SNFMilterEngine scan to libmilter return value.

  244. //

  245. // \param[in] MilterAction is the return from an SNFMilterEngine scan.

  246. //

  247. // \returns the return value for the libmilter callback.

  248. //

  249. // \throws std::out_of_range if MilterAction of out of range.

  250. //

  251. sfsistat

  252. SNFMilterContext::smfisReturn(SNFMilterAction MilterAction) {

  253. 

  254.     static const sfsistat ReturnValue[] = {

  255.         SMFIS_CONTINUE,

  256.         SMFIS_ACCEPT,

  257.         SMFIS_TEMPFAIL,

  258.         SMFIS_REJECT,

  259.         SMFIS_DISCARD,

  260.         SMFIS_CONTINUE

  261.     };

  262. 

  263.     if ( (MilterAction < 0) || (MilterAction >= NMilterActions) ) {

  264.         ostringstream Temp;

  265.         Temp << "Illegal value of SNFMilterAction in SNFMilterContext::smfisReturn ("

  266.              << MilterAction << ") while processing message from "

  267.              << MessageData.SenderAddress

  268.              << " (connection from " << ConnectionData.HostName << " ("

  269.              << (string) ConnectionData.HostIP << ").";

  270.         throw std::out_of_range(Temp.str());

  271.     }

  272. 

  273.     return ReturnValue[MilterAction];

  274.     

  275. }

  276. 

  277. //// SNFMilterContextPool

  278. 

  279. SNFMilterContextPool::SNFMilterContextPool(snf_RulebaseHandler* Rulebase) :     // Ctor needs a live rulebase handler.

  280.     myRulebase(Rulebase),                                                       // Capture the rulebase handler.

  281.     MilterSocketPort(0) {

  282. 

  283.     string NewConfiguration = myRulebase->PlatformConfiguration();              // Get the latest configuration.

  284.     ConfigurationElement Reader("milter");                                      // Create a configuration reader.

  285.     Reader

  286.       .Element("socket")

  287.         .Attribute("type", reinterpret_cast<int&>(MilterSocketType), static_cast<int>(NOMilterSocket))

  288.            .Mnemonic("unix", UNIXMilterSocketMnemonic)

  289.            .Mnemonic("tcp", TCPMilterSocketMnemonic)

  290.         .Attribute("path", MilterSocketPath, "")

  291.         .Attribute("group", MilterSocketGroup, "")

  292.         .Attribute("ip", MilterSocketIP, "")

  293.         .Attribute("port", MilterSocketPort, 0)

  294.       .End("socket")

  295.     .End("milter");

  296. 

  297.     ConfigurationData ConfigurationData(                                        // Convert our configuration string

  298.                                         NewConfiguration.c_str(),               // to a configuration data buffer.

  299.                                         NewConfiguration.length());

  300. 

  301.     Reader.initialize();                                                        // Initialize the defaults.

  302.     Reader.interpret(ConfigurationData);                                        // Read the new configuration.

  303. 

  304.     switch (MilterSocketType) {                                                 // Named pipe.

  305.     case UNIXMilterSocket:

  306.         if (0 == MilterSocketPath.size()) {                                     // Path specified?

  307.             ostringstream Temp;                                                 // No.

  308.             Temp << "Path needs to be specified for socket type \"unix\"";

  309.             throw runtime_error(Temp.str());

  310.         }

  311.         if ( (0 != MilterSocketIP.size()) ||                                    // These should not be specified.

  312.              (0 != MilterSocketPort) ) {

  313.             ostringstream Temp;

  314.             Temp << "IP (" << MilterSocketIP << ") and/or port (" << MilterSocketPort

  315.                  << ") were specified for socket type \"unix\".  They should not be specified.";

  316.             throw runtime_error(Temp.str());

  317.         }

  318. 

  319.         break;

  320.     case TCPMilterSocket:

  321.         if (0 == MilterSocketIP.size()) {                                       // IP/host specified?

  322.             ostringstream Temp;                                                 // No.

  323.             Temp << "Host or IP address needs to be specified for socket type \"inet\"";

  324.             throw runtime_error(Temp.str());

  325.         }

  326.         if (0 == MilterSocketPort) {                                            // Port specified?

  327.             ostringstream Temp;                                                 // No.

  328.             Temp << "Port needs to be specified for socket type \"inet\"";

  329.             throw runtime_error(Temp.str());

  330.         }

  331.         if ( (0 != MilterSocketPath.size()) ||                                  // These should not be specified.

  332.              (0 != MilterSocketGroup.size()) ) {

  333.             ostringstream Temp;

  334.             Temp << "Path (" << MilterSocketPath << ") and/or group (" << MilterSocketGroup

  335.                  << ") were specified for socket type \"inet\".  They should not be specified.";

  336.             throw runtime_error(Temp.str());

  337.         }

  338. 

  339.         break;

  340. 

  341.     case NOMilterSocket:

  342.         {

  343.             ostringstream Temp;

  344.             Temp << "The required <socket> element was not present in the configuration file.";

  345.             throw runtime_error(Temp.str());

  346.         }

  347. 

  348.         break;

  349. 

  350.     default:

  351.         {

  352.             ostringstream Temp;

  353.             Temp << "The type of the <socket> element configuration file is invalid.  "

  354.               "The type must by \"unix\" or \"inet\"";

  355.             throw runtime_error(Temp.str());

  356.         }

  357.     }

  358. }

  359. 

  360. SNFMilterSocketType SNFMilterContextPool::getSocketType() {

  361.     return MilterSocketType;

  362. }

  363. 

  364. string SNFMilterContextPool::getSocketPath() { return MilterSocketPath; }

  365. 

  366. string SNFMilterContextPool::getSocketGroup() { return MilterSocketGroup; }

  367. 

  368. string SNFMilterContextPool::getSocketIP() { return MilterSocketIP; }

  369. 

  370. int SNFMilterContextPool::getSocketPort() { return MilterSocketPort; }

  371. 

  372. SNFMilterContextPool::~SNFMilterContextPool() {                                 // Dtor gracefully discards contexts.

  373.     ScopeMutex ContextPoolLock(ContextAllocationControl);                       // Lock the context allocation system.

  374.     myRulebase = 0;                                                             // Forget our rulebase. We're dead.

  375.     for(                                                                        // Loop through the context pool

  376.         vector<SNFMilterContext*>::iterator iC = ContextPool.begin();           // and delete any contexts we have

  377.         iC != ContextPool.end();                                                // allocated.

  378.         iC++) { delete (*iC); }

  379. }

  380. 

  381. SNFMilterContext* SNFMilterContextPool::grab() {                                // Get a context to use.

  382.     ScopeMutex ContextPoolLock(ContextAllocationControl);                       // Lock the context allocation system.

  383.     if(0 == myRulebase) return 0;                                               // No contexts left if we're dead.

  384.     if(1 > AvailableContexts.size()) {                                          // If we need more contexts then

  385.         SNFMilterContext* N = new SNFMilterContext(myRulebase);                 // Create a new context,

  386.         ContextPool.push_back(N);                                               // add it to the pool,

  387.         AvailableContexts.give(N);                                              // and make it available.

  388.     }

  389.     return AvailableContexts.take();                                            // Return the next avialable context.

  390. }

  391. 

  392. void SNFMilterContextPool::drop(SNFMilterContext* E) {                          // Drop a context after use.

  393.     // Update context state.

  394.     E->State = SNFMilterContext::Pooled;

  395. 

  396.     AvailableContexts.give(E);                                                    // Make this context available.

  397. }

  398. 

  399. void SNFMilterContextPool::logThisError(string ContextName, int Code, string Text) {

  400.     myRulebase->logThisError(ContextName, Code, Text);

  401. }

  402. 

  403. void SNFMilterContextPool::logThisInfo(string ContextName, int Code, string Text) {

  404.     myRulebase->logThisInfo(ContextName, Code, Text);

  405. }

  406. 

  407. // End of configuration setup and engine and context interface components

  408. ////////////////////////////////////////////////////////////////////////////////

  409. 

  410. ////////////////////////////////////////////////////////////////////////////////

  411. // SNFMilter callback definitions, constants, and global data.

  412. 

  413. extern "C" {

  414. 

  415.     // Connection callback.

  416.     //

  417.     // This callback is invoked when a new connection is made to the

  418.     // MTA.  It obtains an available connection context object if one

  419.     // hasn't already been assigned, and saves the IP address and name

  420.     // of the connecting MTA.  Next, it performs an IP scan, and

  421.     // returns the appropriate response.

  422.     //

  423.     // Returns: SMFIS_CONTINUE, SMFIS_ACCEPT, SMFIS_TEMPFAIL, or

  424.     // SMFIS_REJECT according to the following mapping:

  425.     //

  426.     //   IPScanResult return                      mlfi_connect return

  427.     //

  428.     //   Quarantine, Discard, Error               FailSafeMilterResponse

  429.     //

  430.     //   Anything else                            SNFMilterContext::smfisReturn(IPScanResult)

  431.     //

  432.     sfsistat

  433.     mlfi_connect(SMFICTX *Ctx, char *HostName, _SOCK_ADDR *HostAddr)

  434.     {

  435.         const string ContextName = PACKAGE_NAME "::mlfi_connect";

  436.         int ErrorCode = 1;

  437.         int InfoCode = 1;

  438.         sfsistat CallbackResult = FailSafeMilterResponse;

  439.  

  440.         try {

  441. #ifdef NEW_SNFMILTER

  442.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the existing context object.

  443. #else

  444.             SNFMilterContext *Context = (SNFMilterContext *) smfi_getpriv(Ctx); // Get the context object.

  445.             if (0 == Context) {

  446.                 Context = MilterContexts->grab();                               // Get a context object.

  447.                 if(0 == Context)                                                // Check address.

  448.                     throw runtime_error("Got NULL from MilterContexts->grab()");

  449.                 smfi_setpriv(Ctx, Context);                                     // Save the context object.

  450.                 Context->ConnectionData.clear();                                // Clear the connection context object.

  451.             }

  452. #endif

  453. 

  454.             Context->State = SNFMilterContext::Connect;                         // Update context state.

  455. 

  456.             sockaddr_in *SaIn = (sockaddr_in *) HostAddr;                       // Fetch the IP address.

  457. 

  458.             Context->ConnectionData.HostName = HostName;                        // Load the info.

  459.             Context->ConnectionData.HostIP = ntohl(SaIn->sin_addr.s_addr);

  460. 

  461.             if (MilterDebugMode) {

  462.                 ostringstream Temp;

  463.                 Temp << "Connect from " << Context->ConnectionData.HostName << " ("

  464.                      << (string) Context->ConnectionData.HostIP << ").";

  465.                 logInfo(ContextName, InfoCode, Temp.str());

  466.             }

  467. 

  468.             SNFMilterAction IpScanResult;                                       // Perform IP scan.

  469. 

  470.             IpScanResult = Context->milterEngine.scanIP(Context->ConnectionData.HostIP);

  471. 

  472.             if (MilterDebugMode) {

  473.                 ostringstream Temp;

  474.                 Temp << "IP scan result for connection from "

  475.                      << Context->ConnectionData.HostName << " ("

  476.                      << (string) Context->ConnectionData.HostIP << "):  " << IpScanResult << ".";

  477.                 logInfo(ContextName, InfoCode, Temp.str());

  478.             }

  479. 

  480.             if ( (Error == IpScanResult) ||                                     // Check for error

  481.                  (Quarantine == IpScanResult) ||

  482.                  (Discard == IpScanResult) ) {

  483.                 std::ostringstream Temp;                                        // Illegal result.

  484.                 Temp << "Illegal result from IP scan for "

  485.                      << (string) Context->ConnectionData.HostIP

  486.                      << ":  " << IpScanResult;

  487.                 throw std::runtime_error(Temp.str());

  488.             }

  489. 

  490.             CallbackResult = Context->smfisReturn(IpScanResult);                // Load return value.

  491.         } catch (exception &E) {

  492.             logError(ContextName, ErrorCode, E.what());

  493.         } catch (...) {

  494.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  495.         }

  496. 

  497.         return CallbackResult;

  498.     }

  499. 

  500.     //

  501.     // HELO callback.

  502.     //

  503.     // This callback is invoked when the connecting MTA sends a HELO

  504.     // message.  It saves the argument of the HELO command in the

  505.     // connection context object.

  506.     //

  507.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  508.     // otherwise.

  509.     //

  510.     sfsistat

  511.     mlfi_helo(SMFICTX *Ctx, char *heloHost)

  512.     {

  513.         const string ContextName = PACKAGE_NAME "::mlfi_helo";

  514.         int ErrorCode = 1;

  515.         int InfoCode = 1;

  516.         sfsistat CallbackResult = FailSafeMilterResponse;

  517.  

  518.         try {

  519. 

  520.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  521. 

  522.             Context->State = SNFMilterContext::Helo;                            // Update context state.

  523. 

  524.             Context->ConnectionData.HostHelo = heloHost;                        // Save the helo host name.

  525. 

  526.             if (MilterDebugMode) {

  527.                 ostringstream Temp;

  528.                 Temp << "HELO " << Context->ConnectionData.HostHelo << " from "

  529.                      << Context->ConnectionData.HostName << " ("

  530.                      << (string) Context->ConnectionData.HostIP << ").";

  531.                 logInfo(ContextName, InfoCode, Temp.str());

  532.             }

  533. 

  534.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  535.         } catch (exception &E) {

  536.             logError(ContextName, ErrorCode, E.what());

  537.         } catch (...) {

  538.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  539.         }

  540. 

  541.         return CallbackResult;

  542.     }

  543. 

  544.     //

  545.     // envfrom callback.

  546.     //

  547.     // This callback is invoked to process the envelope from line of the

  548.     // mail message.  It clears the message buffer, and adds the local

  549.     // received header to the message buffer to scan.  The local received

  550.     // header is added to the email message in mlfi_eom.

  551.     //

  552.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  553.     // otherwise.

  554.     //

  555.     sfsistat

  556.     mlfi_envfrom(SMFICTX *Ctx, char **argv)

  557.     {

  558.         const string ContextName = PACKAGE_NAME "::mlfi_envfrom";

  559.         int ErrorCode = 1;

  560.         int InfoCode = 1;

  561.         sfsistat CallbackResult = FailSafeMilterResponse;

  562.  

  563.         try {

  564.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  565. 

  566.             Context->State = SNFMilterContext::EnvFrom;                         // Update context state.

  567. 

  568.             Context->MessageData.clear();                                       // This is the beginning of a new message.

  569.                                                                                 // Clear data from any previous message.

  570. 

  571.             if (MilterDebugMode) {

  572.                 Context->MessageData.SenderAddress = argv[0];

  573.                 ostringstream Temp;

  574.                 Temp << "Processing sender address " << Context->MessageData.SenderAddress

  575.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  576.                      << (string) Context->ConnectionData.HostIP << ")).\n";

  577.                 logInfo(ContextName, InfoCode, Temp.str());

  578.             }

  579. 

  580.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  581.         } catch (exception &E) {

  582.             logError(ContextName, ErrorCode, E.what());

  583.         } catch (...) {

  584.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  585.         }

  586. 

  587.         return CallbackResult;

  588.     }

  589. 

  590.     //

  591.     // envrcpt callback.

  592.     //

  593.     // This callback is invoked to process the envelope receipt line of

  594.     // the mail message.

  595.     //

  596.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  597.     // otherwise.

  598.     //

  599.     sfsistat

  600.     mlfi_envrcpt(SMFICTX *Ctx, char **argv)

  601.     {

  602.         const string ContextName = PACKAGE_NAME "::mlfi_envrcpt";

  603.         int ErrorCode = 1;

  604.         int InfoCode = 1;

  605.         sfsistat CallbackResult = FailSafeMilterResponse;

  606.  

  607.         try {

  608.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  609. 

  610.             // Update context state.

  611.             Context->State = SNFMilterContext::EnvRcpt;

  612. 

  613.             if (MilterDebugMode) {

  614.                 ostringstream Temp;

  615.                 Temp << "Processing recipient " << argv[0] << " for message from "

  616.                      << Context->MessageData.SenderAddress

  617.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  618.                      << (string) Context->ConnectionData.HostIP << ")).";

  619.                 logInfo(ContextName, InfoCode, Temp.str());

  620.             }

  621. 

  622.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  623.         } catch (exception &E) {

  624.             logError(ContextName, ErrorCode, E.what());

  625.         } catch (...) {

  626.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  627.         }

  628. 

  629.         return CallbackResult;

  630.     }

  631. 

  632.     //

  633.     // header callback.

  634.     //

  635.     // This callback is invoked to process the a header line of the mail

  636.     // message.  It writes the header line + SMTPENDL to the message buffer

  637.     // that is scanned.

  638.     //

  639.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  640.     // otherwise.

  641.     //

  642.     sfsistat

  643.     mlfi_header(SMFICTX *Ctx, char *headerf, char *headerv)

  644.     {

  645.         const string ContextName = PACKAGE_NAME "::mlfi_header";

  646.         int ErrorCode = 1;

  647.         int InfoCode = 1;

  648.         sfsistat CallbackResult = FailSafeMilterResponse;

  649.  

  650.         try {

  651.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  652. 

  653.             Context->State = SNFMilterContext::Header;                          // Update context state.

  654. 

  655.             if (MilterDebugMode) {

  656.                 ostringstream Temp;

  657.                 Temp << "Processing header '" << headerf << ": " << headerv

  658.                      << "' for message from "

  659.                      << Context->MessageData.SenderAddress

  660.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  661.                      << (string) Context->ConnectionData.HostIP << ")).";

  662.                 logInfo(ContextName, InfoCode, Temp.str());

  663.             }

  664. 

  665. 

  666.             Context->MessageData.MessageBuffer += headerf;                      // Add the header.

  667.             Context->MessageData.MessageBuffer += ": ";

  668.             Context->MessageData.MessageBuffer += headerv;

  669.             Context->MessageData.MessageBuffer += SMTPENDL;

  670. 

  671.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  672.         } catch (exception &E) {

  673.             logError(ContextName, ErrorCode, E.what());

  674.         } catch (...) {

  675.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  676.         }

  677. 

  678.         return CallbackResult;

  679.     }

  680. 

  681.     //

  682.     // End of header callback.

  683.     //

  684.     // This callback is invoked after the last header of the mail

  685.     // message is sent.  It writes SMTPENDL SMTPENDL to the message

  686.     // buffer that is scanned.

  687.     //

  688.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  689.     // otherwise.

  690.     //

  691.     sfsistat

  692.     mlfi_eoh(SMFICTX *Ctx)

  693.     {

  694.         const string ContextName = PACKAGE_NAME "::mlfi_eoh";

  695.         int ErrorCode = 1;

  696.         int InfoCode = 1;

  697.         sfsistat CallbackResult = FailSafeMilterResponse;

  698.  

  699.         try {

  700.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  701. 

  702.             Context->State = SNFMilterContext::EOH;                             // Update context state.

  703. 

  704.             Context->MessageData.MessageBuffer += SMTPENDL + SMTPENDL;          // Add the blank lines..

  705. 

  706.             if (MilterDebugMode) {

  707.                 ostringstream Temp;

  708.                 Temp << "All headers received  for message from "

  709.                      << Context->MessageData.SenderAddress

  710.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  711.                      << (string) Context->ConnectionData.HostIP << ")).  Message buffer--\n'"

  712.                      << Context->MessageData.MessageBuffer << "'.";

  713.                 logInfo(ContextName, InfoCode, Temp.str());

  714.             }

  715. 

  716.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  717.         } catch (exception &E) {

  718.             logError(ContextName, ErrorCode, E.what());

  719.         } catch (...) {

  720.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  721.         }

  722. 

  723.         return CallbackResult;

  724.     }

  725. 

  726.     //

  727.     // message body callback.

  728.     //

  729.     // This callback is invoked zero or more times to send the body of the

  730.     // mail message is sent. It writes the body to the message buffer that

  731.     // is scanned.

  732.     //

  733.     // Returns: SMFIS_CONTINUE if more of the message body is needed,

  734.     // Context->SkipReturn if more of the message body is not needed,

  735.     // or FailSafeMilterResponse if an error occurs.  Context is the

  736.     // connection context object.

  737.     //

  738.     sfsistat

  739.     mlfi_body(SMFICTX *Ctx, unsigned char *Bodyp, size_t Bodylen)

  740.     {

  741. 

  742.         const string ContextName = PACKAGE_NAME "::mlfi_body";

  743.         int ErrorCode = 1;

  744.         int InfoCode = 1;

  745.         sfsistat CallbackResult = FailSafeMilterResponse;

  746.  

  747.         try {

  748.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  749. 

  750.             Context->State = SNFMilterContext::Body;                            // Update context state.

  751. 

  752.             if (Context->MessageData.MessageBuffer.size() >=                    // Return if there is enough in the

  753.               MailBufferReserveSize) {                                          // message buffer.

  754. 

  755.                 return Context->SkipReturn;

  756. 

  757.             }

  758. 

  759.             if (Context->MessageData.MessageBuffer.size() <                     // Do we need to copy this?

  760.               MailBufferReserveSize) {

  761. 

  762.                 string::size_type NCharToTransfer = MailBufferReserveSize -     // Yes. How much more?

  763.                   Context->MessageData.MessageBuffer.size();

  764. 

  765.                 if (NCharToTransfer > Bodylen) {                                // Don't transfer more characters

  766.                                                                                 // than are available.

  767.                     NCharToTransfer = Bodylen;

  768.                 }

  769.     

  770.                 Context->MessageData.MessageBuffer.append((const char *) Bodyp, // Append the message.

  771.                                                           NCharToTransfer);

  772. 

  773.                 if (MilterDebugMode) {

  774.                     ostringstream Temp;

  775.                     Temp << "Appended " << NCharToTransfer << " bytes to "

  776.                          << "message from " << Context->MessageData.SenderAddress

  777.                          << " (connection from " << Context->ConnectionData.HostName << " ("

  778.                          << (string) Context->ConnectionData.HostIP << ")).  Message length:  "

  779.                          << Context->MessageData.MessageBuffer.size() << ".";

  780.                     logInfo(ContextName, InfoCode, Temp.str());

  781.                 }

  782. 

  783.             } else {

  784.                 if (MilterDebugMode) {

  785.                     ostringstream Temp;

  786.                     Temp << "Discarded " << Bodylen << " bytes "

  787.                          << "message from " << Context->MessageData.SenderAddress

  788.                          << " (connection from " << Context->ConnectionData.HostName << " ("

  789.                          << (string) Context->ConnectionData.HostIP << ")) because "

  790.                          << MailBufferReserveSize << " bytes have already been "

  791.                          << "transferred.  Message length:  "

  792.                          << Context->MessageData.MessageBuffer.size() << ".";

  793.                     logInfo(ContextName, InfoCode, Temp.str());

  794.                 }

  795.             }

  796.             CallbackResult =  SMFIS_CONTINUE;                               // Load return value.

  797.         } catch (exception &E) {

  798.             logError(ContextName, ErrorCode, E.what());

  799.         } catch (...) {

  800.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  801.         }

  802. 

  803.         return CallbackResult;

  804.     }

  805. 

  806.     //

  807.     // End-Of-Message callback.

  808.     //

  809.     // This callback is invoked to when the entire message has been sent

  810.     // to SNFMilter.  It adds the local received header to the email

  811.     // message, and then scans the message body.  If the scan result

  812.     // indicates that the message is to be quarantined, then the message

  813.     // is set to be quarantined (using smfi_quarantine).

  814.     //

  815.     // Returns: SMFIS_CONTINUE, SMFIS_ACCEPT, SMFIS_TEMPFAIL, or

  816.     // SMFIS_DISCARD, SMFIS_REJECT, or FailSafeMilterResponse

  817.     // according to the following mapping:

  818.     //

  819.     //   MessageScan return                       mlfi_connect return

  820.     //

  821.     //   Error                                    FailSafeMilterResponse

  822.     //

  823.     //   Anything else                            SNFMilterContext::smfisReturn(IPScanResult)

  824.     //

  825.     // Side effect: If the MessageScan result is Quarantine, the

  826.     // message is quarantined using smfi_quarantine().

  827.     //

  828.     sfsistat

  829.     mlfi_eom(SMFICTX *Ctx)

  830.     {

  831.         const string ContextName = PACKAGE_NAME "::mlfi_eom";

  832.         int ErrorCode = 1;

  833.         int InfoCode = 1;

  834.         sfsistat CallbackResult = FailSafeMilterResponse;

  835.  

  836.         try {

  837.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  838. 

  839.             Context->State = SNFMilterContext::EOM;                             // Update context state.

  840. 

  841.             if (MilterDebugMode) {

  842.                 ostringstream Temp;

  843.                 Temp << "End of message from " << Context->MessageData.SenderAddress

  844.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  845.                      << (string) Context->ConnectionData.HostIP << ")).";

  846.                 logInfo(ContextName, InfoCode, Temp.str());

  847.             }

  848. 

  849. 

  850.             if (PrependLocalReceivedHeader) {

  851.               Context->MessageData.MessageBuffer.

  852.                 insert(0, Context->getLocalReceivedHeader() + SMTPENDL);        // Prepend local received header line

  853.                                                                                 // to the message buffer.

  854.             }

  855. 

  856.             SNFMilterAction MsgScanResult;                                     // Perform scan.

  857. 

  858.             MsgScanResult =

  859.               Context->milterEngine.scanMessage((unsigned char *) Context->MessageData.MessageBuffer.c_str(),

  860.                                                 Context->MessageData.MessageBuffer.size());

  861. 

  862.             if (MilterDebugMode) {

  863.                 ostringstream Temp;

  864.                 Temp << "Message scan result for message from " << Context->MessageData.SenderAddress

  865.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  866.                      << (string) Context->ConnectionData.HostIP << ")):  " << MsgScanResult << ".";

  867.                 logInfo(ContextName, InfoCode, Temp.str());

  868.             }

  869. 

  870. 

  871.             if (Error == MsgScanResult) {                                       // Check for scan error

  872. 

  873.                 // Illegal result.

  874.                 std::ostringstream Temp;

  875. 

  876.                 Temp << "Illegal message scan result for message from "

  877.                      << Context->MessageData.SenderAddress

  878.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  879.                      << (string) Context->ConnectionData.HostIP << ")):  " << MsgScanResult;

  880.                 throw std::runtime_error(Temp.str());

  881. 

  882.             }

  883. 

  884.             string XHeaders = Context->milterEngine.XHeaders();                 // Fetch X-headers to submit.

  885.             MailHeaders MailHeadersParse;                                       // Object to parse X-headers.

  886. 

  887.             MailHeadersParse.loadHeaders(XHeaders);                             // Load the headers to be parsed.

  888. 

  889.             cout << "X-Headers--\n'" << XHeaders << "'" << endl;

  890. 

  891.             string HeaderName;                                                  // Name of X-header.

  892.             string HeaderBody;                                                  // Body of X-header, formatted for libmilter.

  893. 

  894.             while (MailHeadersParse.getNameBody(&HeaderName, &HeaderBody)) {    // While there is an X-Header...

  895. 

  896.                 if (MilterDebugMode) {

  897.                     ostringstream Temp;

  898.                     Temp << "Processed X-Header for message from " << Context->MessageData.SenderAddress

  899.                          << " (connection from " << Context->ConnectionData.HostName << " ("

  900.                          << (string) Context->ConnectionData.HostIP << ")).  X-Header name:  '"

  901.                          << HeaderName << "'.  X-Header body:  '" << HeaderBody << "'.";

  902.                     logInfo(ContextName, InfoCode, Temp.str());

  903.                 }

  904. 

  905.                 if (MI_SUCCESS != smfi_addheader(Ctx,                           // Add header to the email message.

  906.                                                  (char *) HeaderName.c_str(),

  907.                                                  (char *) HeaderBody.c_str())) {

  908.                     ostringstream Temp;

  909.                     Temp << "Error adding X-header to message from " << Context->MessageData.SenderAddress

  910.                          << " (connection from " << Context->ConnectionData.HostName << " ("

  911.                          << (string) Context->ConnectionData.HostIP

  912.                          << ")).\nX-Header name:  '" << HeaderName << "'.  X-Header body--\n'"

  913.                          << HeaderBody << "'.";

  914.                     logError(ContextName, 1, Temp.str());

  915.                 }

  916.             }

  917. 

  918.             if (Quarantine == MsgScanResult) {                                  // Quarantine the message?

  919. 

  920.                 if (MI_SUCCESS != smfi_quarantine(Ctx,

  921.                                                   "Quarantined by " PACKAGE_NAME)) {

  922. 

  923.                     ostringstream Temp;

  924.                     Temp << "Error quarantining message from "

  925.                          << Context->MessageData.SenderAddress

  926.                          << " (connection from " << Context->ConnectionData.HostName << " ("

  927.                          << (string) Context->ConnectionData.HostIP << ")).";

  928.                     logError(ContextName, 1, Temp.str());

  929. 

  930.                 }

  931. 

  932.                 return SMFIS_CONTINUE;

  933.             }

  934. 

  935.             CallbackResult = Context->smfisReturn(MsgScanResult);               // Load return value.

  936.         } catch (exception &E) {

  937.             logError(ContextName, ErrorCode, E.what());

  938.         } catch (...) {

  939.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  940.         }

  941. 

  942.         return CallbackResult;

  943.     }

  944. 

  945.     //

  946.     // Callback for aborting the message.

  947.     //

  948.     // This callback is invoked to when the processing of the current

  949.     // message is to be aborted.  It logs the abort as an info event,

  950.     // clears the email message buffer, and sets the state to

  951.     // connected.

  952.     //

  953.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  954.     // otherwise.

  955.     //

  956.     sfsistat

  957.     mlfi_abort(SMFICTX *Ctx)

  958.     {

  959.         const string ContextName = PACKAGE_NAME "::mlfi_abort";

  960.         int ErrorCode = 1;

  961.         int InfoCode = 1;

  962.         sfsistat CallbackResult = FailSafeMilterResponse;

  963.  

  964.         try {

  965.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  966. 

  967.             Context->State = SNFMilterContext::Connect;                         // Update context state.

  968. 

  969.             ostringstream Temp;                                                 // Log message.

  970.             Temp << "Aborted processing of message from " << Context->MessageData.SenderAddress

  971.                  << " (connection from " << Context->ConnectionData.HostName << " ("

  972.                  << (string) Context->ConnectionData.HostIP << ")).";

  973.             logInfo(ContextName, InfoCode, Temp.str());

  974. 

  975.             Context->MessageData.clear();                                       // Clear data for this message.

  976.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  977.         } catch (exception &E) {

  978.             logError(ContextName, ErrorCode, E.what());

  979.         } catch (...) {

  980.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  981.         }

  982. 

  983.         return CallbackResult;

  984. 

  985.     }

  986. 

  987.     //

  988.     // Callback for closing the connection.

  989.     //

  990.     // This callback is invoked to when the connection with the remote MTA is closed.

  991.     // It returns the connection context object to the pool.

  992.     //

  993.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  994.     // otherwise.

  995.     //

  996.     sfsistat

  997.     mlfi_close(SMFICTX *Ctx)

  998.     {

  999.         const string ContextName = PACKAGE_NAME "::mlfi_close";

  1000.         int ErrorCode = 1;

  1001.         int InfoCode = 1;

  1002.         sfsistat CallbackResult = FailSafeMilterResponse;

  1003.  

  1004.         try {

  1005.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  1006. 

  1007.             Context->State = SNFMilterContext::Close;                           // Update context state.

  1008. 

  1009.             if (MilterDebugMode) {

  1010.                 ostringstream Temp;

  1011.                 Temp << "Closing connection from "

  1012.                      << Context->ConnectionData.HostName << " ("

  1013.                      << (string) Context->ConnectionData.HostIP << ").";

  1014.                 logInfo(ContextName, InfoCode, Temp.str());

  1015.             }

  1016. 

  1017. 

  1018.             MilterContexts->drop(Context);                                      // Return the context object.

  1019. 

  1020.             smfi_setpriv(Ctx, 0);

  1021.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  1022.         } catch (exception &E) {

  1023.             logError(ContextName, ErrorCode, E.what());

  1024.         } catch (...) {

  1025.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  1026.         }

  1027. 

  1028.         return CallbackResult;

  1029. 

  1030.     }

  1031. 

  1032. #ifdef NEW_LIBMILTER

  1033.     //

  1034.     // Callback for unknown SMTP command.

  1035.     //

  1036.     // This callback is invoked to when an unknown SMTP command is

  1037.     // received by the local MTA.  The unknown command is logged.

  1038.     //

  1039.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  1040.     // otherwise.

  1041.     //

  1042.     sfsistat

  1043.     mlfi_unknown(SMFICTX *Ctx, const char *Cmd)

  1044.     {

  1045.         const string ContextName = PACKAGE_NAME "::mlfi_unknown";

  1046.         int ErrorCode = 1;

  1047.         int InfoCode = 1;

  1048.         sfsistat CallbackResult = FailSafeMilterResponse;

  1049.  

  1050.         try {

  1051.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  1052. 

  1053.             ostringstream Temp;                                                 // Log.

  1054.             Temp << "Unknown SMTP command from "

  1055.                  << Context->ConnectionData.HostName << " ("

  1056.                  << (string) Context->ConnectionData.HostIP << "):  '"

  1057.                  << *Cmd << "'";

  1058.             logInfo(ContextName, InfoCode, Temp.str());

  1059. 

  1060.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  1061.         } catch (exception &E) {

  1062.             logError(ContextName, ErrorCode, E.what());

  1063.         } catch (...) {

  1064.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  1065.         }

  1066. 

  1067.         return CallbackResult;

  1068. 

  1069.     }

  1070. 

  1071.     //

  1072.     // data callback.

  1073.     //

  1074.     // This callback is invoked when the connecting MTA sends a DATA

  1075.     // message.

  1076.     //

  1077.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  1078.     // otherwise.

  1079.     //

  1080.     sfsistat

  1081.     mlfi_data(SMFICTX *Ctx)

  1082.     {

  1083.         const string ContextName = PACKAGE_NAME "::mlfi_data";

  1084.         int ErrorCode = 1;

  1085.         int InfoCode = 1;

  1086.         sfsistat CallbackResult = FailSafeMilterResponse;

  1087.  

  1088.         try {

  1089.             SNFMilterContext *Context = getContextFromCtx(Ctx);                 // Get the context object.

  1090. 

  1091.             Context->State = SNFMilterContext::Data;                            // Update context state.

  1092. 

  1093.             if (MilterDebugMode) {

  1094.                 ostringstream Temp;

  1095.                 Temp << "DATA for message from "

  1096.                      << Context->MessageData.SenderAddress

  1097.                      << " (connection from " << Context->ConnectionData.HostName << " ("

  1098.                      << (string) Context->ConnectionData.HostIP << ")).";

  1099.                 logInfo(ContextName, InfoCode, Temp.str());

  1100.             }

  1101. 

  1102.             CallbackResult =  SMFIS_CONTINUE;                                   // Load return value.

  1103.         } catch (exception &E) {

  1104.             logError(ContextName, ErrorCode, E.what());

  1105.         } catch (...) {

  1106.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  1107.         }

  1108. 

  1109.         return CallbackResult;

  1110.     }

  1111. 

  1112.     //

  1113.     // Callback for negotiating the capabilities of the MTA.

  1114.     //

  1115.     // This callback is invoked at the start of each SMTP connection.

  1116.     // It obtains an available connection context object if one hasn't

  1117.     // already been assigned, checks whether the MTA can accept an

  1118.     // SMFIS_SKIP return, and configures the connection context object

  1119.     // to return an acceptable value.

  1120.     //

  1121.     // Returns: SMFIS_CONTINUE if no error, FailSafeMilterResponse

  1122.     // otherwise.

  1123.     //

  1124.     sfsistat

  1125.     mlfi_negotiate(SMFICTX *Ctx,

  1126.                    unsigned long F0,

  1127.                    unsigned long F1,

  1128.                    unsigned long F2,

  1129.                    unsigned long F3,

  1130.                    unsigned long *PF0,

  1131.                    unsigned long *PF1,

  1132.                    unsigned long *PF2,

  1133.                    unsigned long *PF3)

  1134.     {

  1135.         const string ContextName = PACKAGE_NAME "::mlfi_negotiate";

  1136.         int ErrorCode = 1;

  1137.         int InfoCode = 1;

  1138.         sfsistat CallbackResult = SMFIS_ALL_OPTS;

  1139.  

  1140.         try {

  1141.             SNFMilterContext *Context = (SNFMilterContext *) smfi_getpriv(Ctx); // Get the context object.

  1142.             if (0 == Context) {

  1143.                 Context = MilterContexts->grab();                               // Get a context object.

  1144.                 if(0 == Context)                                                // Check address.

  1145.                     throw runtime_error("Got NULL from MilterContexts->grab()");

  1146.                 smfi_setpriv(Ctx, Context);                                     // Save the context object.

  1147.                 Context->ConnectionData.clear();                                // Clear the connection context object.

  1148.             }

  1149. 

  1150.             bool AcceptsSkip = F1 & SMFIP_SKIP;

  1151.             if (AcceptsSkip) {                                                  // MTA accepts SMFIS_SKIP return?

  1152.                 Context->SkipReturn = SMFIS_SKIP;                               // Yes.  Use SMFIS_SKIP.

  1153.             } else {

  1154.                 Context->SkipReturn = SMFIS_CONTINUE;                           // No.  Use SMFIS_CONTINUE.

  1155.             }

  1156. 

  1157.             if (MilterDebugMode) {

  1158.                 ostringstream Temp;                                             // Log message.

  1159.                 Temp << "MTA does " << (AcceptsSkip ? "" : "not ") << "accept SMFIS_SKIP.";

  1160.                 logInfo(ContextName, InfoCode, Temp.str());

  1161.             }

  1162.             CallbackResult =  SMFIS_ALL_OPTS;                                   // Load return value.

  1163.         } catch (exception &E) {

  1164.             logError(ContextName, ErrorCode, E.what());

  1165.         } catch (...) {

  1166.             logError(ContextName, ErrorCode, UnknownExceptionMessage);

  1167.         }

  1168. 

  1169.         return CallbackResult;

  1170. 

  1171.     }

  1172. 

  1173. #endif

  1174. 

  1175. }

  1176. 

  1177. // End of SNFMilter callback definitions, constants, and global data.

  1178. ////////////////////////////////////////////////////////////////////////////////

  1179. 

  1180. ////////////////////////////////////////////////////////////////////////////////

  1181. // SNFMilter setup & run function.

  1182. 

  1183. // The runLibMilter function establishes the appropriate libmilter call backs and

  1184. // accepts calls from the MTA via libmilter until it is told to quit. When it

  1185. // is told to quit it gracefully closes down, reclaims any memory it allocated,

  1186. // and returns.

  1187. 

  1188. void runLibMilter(SNFMilterContextPool* Contexts, bool DebugMode) {             // Run the milter 'til it's done.

  1189. 

  1190.     MilterContexts = Contexts;                                                  // Save the pool of context objects.

  1191.     MilterDebugMode = DebugMode;                                                // Save the debug mode flag.

  1192. 

  1193. #if 0

  1194.     if (MilterDebugMode) {

  1195.         openlog(PACKAGE_NAME, LOG_PID | LOG_PERROR, LOG_MAIL);                  // Initialize system logging to log

  1196.                                                                                 // messages to mail file.

  1197.     }

  1198. #endif

  1199. 

  1200.     struct smfiDesc smfilter = {                                                // Load structure containing callbacks.

  1201.         PACKAGE_NAME,	                                                        // Filter name.

  1202.         SMFI_VERSION,	                                                        // Version code -- do not change.

  1203.         SMFIF_ADDHDRS | SMFIF_QUARANTINE,                                       // Flags.

  1204.         mlfi_connect,                                                           // Connection info callback.

  1205.         mlfi_helo,                                                              // SMTP HELO command callback.

  1206.         mlfi_envfrom,                                                           // Envelope sender callback.

  1207.         mlfi_envrcpt,                                                           // Envelope recipient callback.

  1208.         mlfi_header,                                                            // Header callback.

  1209.         mlfi_eoh,                                                               // End of headers callback.

  1210.         mlfi_body,                                                              // Body block callback.

  1211.         mlfi_eom,                                                               // End of message callback.

  1212.         mlfi_abort,                                                             // Message abort callback.

  1213.         mlfi_close,                                                             // Connection closed callback.

  1214. #ifdef NEW_LIBMILTER

  1215.         mlfi_unknown,                                                           // Unknown SMTP command callback.

  1216.         mlfi_data,                                                              // DATA ccallback.

  1217.         mlfi_negotiate                                                          // Negotiation at the start of each SMTP

  1218. #endif

  1219.                                                                                 // connection callback.

  1220.     };

  1221. 

  1222.     string MilterConnSpec;

  1223. 

  1224.     switch (Contexts->getSocketType()) {                                        // Configure the connection.

  1225.     case UNIXMilterSocket:

  1226. 

  1227.         MilterConnSpec = "unix:" +  Contexts->getSocketPath();                  // Generate the connection spec.

  1228.         cerr << "MilterConnSpec:  " << MilterConnSpec << endl; // DEBUG

  1229.               

  1230.         break;

  1231. 

  1232.     case TCPMilterSocket:

  1233.         {

  1234.             ostringstream Temp;

  1235. 

  1236.             Temp << "inet:" << Contexts->getSocketPort() << "@"                 // Generate the connection spec.

  1237.                  << Contexts->getSocketIP();

  1238.             MilterConnSpec = Temp.str();

  1239.         }

  1240. 

  1241.         break;

  1242. 

  1243.     default:

  1244.         {

  1245.             ostringstream Temp;

  1246.             Temp << PACKAGE " internal error:  Invalid socket type from SNFMilterContextPool.";

  1247.             throw logic_error(Temp.str());

  1248.         }

  1249.     }

  1250. 

  1251.     if (MI_FAILURE == smfi_setconn(const_cast<char *>(MilterConnSpec.c_str()))) {

  1252.         ostringstream Temp;

  1253.         Temp << "smfi_setconn failed with input \"" << MilterConnSpec << "\"";

  1254.         throw std::runtime_error(Temp.str());

  1255.     }

  1256. 

  1257.     if (MI_FAILURE == smfi_register(smfilter)) {                                // Register the callbacks.

  1258.         string msg = "smfi_register failed";

  1259.         throw std::runtime_error(msg);

  1260.     }

  1261. 

  1262.     if (UNIXMilterSocket == Contexts->getSocketType()) {

  1263.         if (MI_FAILURE == smfi_opensocket(true)) {                              // Create the named pipe.

  1264.             ostringstream Temp;

  1265.             Temp << "smfi_opensocket failed for \"" << MilterConnSpec << "\"";

  1266.             throw std::runtime_error(Temp.str());

  1267.         }

  1268. 

  1269.         string MilterConnPath = Contexts->getSocketPath();

  1270. 

  1271.         if (chmod(MilterConnPath.c_str(),                                       // Set permissions.

  1272.                   S_IRUSR | S_IWUSR |

  1273.                   S_IRGRP | S_IWGRP) != 0) {

  1274.             ostringstream Temp;

  1275.             Temp << "Error setting permissions of " << MilterConnPath << ":  "

  1276.                  << strerror(errno);

  1277.             throw runtime_error(Temp.str());

  1278.         }

  1279. 

  1280.         string GroupName = Contexts->getSocketGroup();

  1281.         if (0 != GroupName.size()) {                                            // Was a group specified?

  1282.             struct group *Group = getgrnam(GroupName.c_str());                  // Get the ID of the group.

  1283.             errno = 0;

  1284.             if (NULL == Group) {

  1285.                 ostringstream Temp;

  1286.                 if (0 != errno) {                                               // Error?

  1287.                     Temp << "Error obtaining the group ID of " << GroupName << ":  "

  1288.                          << strerror(errno);

  1289.                 } else {                                                        // Group not found.

  1290.                     Temp << "Error obtaining the group ID of " << GroupName << ":  "

  1291.                          << "No such group";

  1292.                 }

  1293.                 throw runtime_error(Temp.str());

  1294.             }

  1295. 

  1296.             if (chown(MilterConnPath.c_str(),                                   // Set group.

  1297.                       -1,

  1298.                       Group->gr_gid) != 0) {

  1299.                 ostringstream Temp;

  1300.                 Temp << "Error setting group of " << MilterConnPath << " to "

  1301.                      << Group->gr_name << ":  " << strerror(errno);

  1302.                 throw runtime_error(Temp.str());

  1303.             }

  1304.         }

  1305.     }

  1306. 

  1307.     if (MI_FAILURE == smfi_main()) {                                            // Hand control to libmilter

  1308.         string msg = "smfi_main failed";

  1309.         throw std::runtime_error(msg);

  1310.     }

  1311. 

  1312.     // Do any cleanup

  1313.     MilterContexts = 0;                                                         // Turn off.

  1314. 

  1315. }