sqmail/doxygen/qmail-dkverify_8c_source.html

#include <sys/types.h>

#include <sys/stat.h>

#include <unistd.h>

#include <fcntl.h>

#include <sys/socket.h>

#include "sig.h"

#include "stralloc.h"

#include "buffer.h"

#include "error.h"

#include "auto_qmail.h"

#include "auto_queue.h"

#include "str.h"

#include "exit.h"

#include "uint_t.h"

#include "fd.h"

#include "open.h"

#include "fmt.h"

#include "fmtqfn.h"

#include "readwrite.h"

#include "getln.h"

#include "qmail.h"

#include "wait.h"

#include "byte.h"

#include "case.h"

#include "control.h"

#include "pathexec.h"

#include "env.h"


#define WHO "qmail-dkverify"


char inbuf[BUFSIZE_LINE];

buffer bi = BUFFER_INIT(buffer_unixread,0,inbuf,sizeof(inbuf));    // read buffer

char outbuf[BUFSIZE_MESS];

buffer bo = BUFFER_INIT(buffer_unixwrite,1,outbuf,sizeof(outbuf)); // output message


static void die(int e) { _exit(e); }

static void die_pipe(char *fn) { unlink(fn); die(54); };

static void die_write(char *fn) { unlink(fn); die(62); };

static void die_read() { die(54); };

static void out(char *s) { if (buffer_puts(&bo,s) == -1) _exit(111); }

static void zero() { if (buffer_put(&bo,"\0",1) == -1) _exit(111); }

static void zerodie() { zero(); buffer_flush(&bo); _exit(111); }


static void temp_nomem()

{

  out("ZOut of memory. (#4.3.0)\n");

  zerodie();

}

static void temp_chdir()

{

  out("ZUnable to switch to target directory. (#4.3.0)\n");

  zerodie();

}

static void temp_unlink()

{

  out("ZUnable to unlink DKIM stage file. (#4.3.0)\n");

  zerodie();

}

static void temp_read()

{

  out("ZUnable to read message. (#4.3.0)\n");

  zerodie();

}

static void temp_control()

{

  out("ZUnable to read control files. (#4.3.0)\n");

  zerodie();

}


static stralloc me = {0};

static stralloc signdomain = {0};

static stralloc dkheader = {0};

static stralloc fndkin = {0};

static stralloc fndkout = {0};

static stralloc result = {0};


static stralloc temp = {0};


static void fnmake_dkim(unsigned long id)

{

  fndkin.len = fmtqfn(fndkin.s,"queue/dkim/",id,1);

  id += id;

  fndkout.len = fmtqfn(fndkout.s,"queue/dkim/",id,1);

}


static void dkim_stage()

{

  int r;

  int fd;

  int in, out;

  struct stat st;

  char tmpbuf[BUFSIZE_MESS + 2];


  if (chdir(auto_queue) == -1) temp_chdir();


  if (!stralloc_ready(&fndkin,FMTQFN)) temp_nomem();

  if (!stralloc_ready(&fndkout,FMTQFN)) temp_nomem();


  fnmake_dkim(getpid());  // pre-staging

  fd = open_excl(fndkin.s);

  if (fd == -1) die_write(fndkin.s);


  buffer_init(&bi,buffer_unixread,0,inbuf,sizeof(inbuf));

  buffer_init(&bo,buffer_unixwrite,fd,outbuf,sizeof(outbuf));


  while ((r = buffer_get(&bi,inbuf,sizeof(inbuf))) > 0) { // read into buffer

    for (in = out = 0; in < r; in++) {                // reconstruct CRLF (ok)

      if (!(inbuf[in] == '\n' || inbuf[in] == '\r')) {

        tmpbuf[out] = inbuf[in];

        out++;

      } else {

        tmpbuf[out++] = '\r';

        tmpbuf[out++] = '\n';

                                if (!stralloc_copyb(&temp,tmpbuf,out)) temp_nomem();

        if (!stralloc_0(&temp)) temp_nomem();

      }

    }

    if (out) buffer_put(&bo,tmpbuf,out);

  }


  if (buffer_flush(&bo) == -1) die(51);

  if (fstat(fd,&st) == -1) die_write(fndkin.s);

  if (fsync(fd) == -1) die_write(fndkin.s);

  if (close(fd) == -1) die_write(fndkin.s);

}


static int mess_dkim()

{

  stralloc line = {0};

  char ch;

  int match;

  int fd;

  int r = 0;

  int i;


  fd = open_read(fndkin.s);

  if (fd == -1) die_read();

  buffer_init(&bi,buffer_unixread,fd,inbuf,sizeof(inbuf));


  if (!stralloc_copys(&signdomain,"")) temp_nomem();


  for (;;) {

    if (getln(&bi,&line,&match,'\n') == -1) temp_read();

    if (case_starts(line.s,"DKIM-Signature: ")) r = 1;

    if (r) {                                     // DKIM signature seen

      for (i = 1; i < line.len; i++) {           // d=domain.tld;

        if (r == 1 && *(line.s + i) == '=' && *(line.s + i - 1) == 'd') r = 2;

        if (r == 2) {

          ch = *(line.s + i);                    // next character to fetch

          if (ch == ';') { r = 3; goto DONE;  }  // done

          if (ch == '\n') break;                 // next line

          if (ch != '=' && ch != ' ' && ch != '\t' && ch != '\r')

            if (!stralloc_catb(&signdomain,&ch,1)) temp_nomem();

        }

      }

    }

    if (!match) break;

  }


  DONE:

  if (r != 3)

    if (!stralloc_copys(&signdomain,"unknown")) temp_nomem();

  if (!stralloc_0(&signdomain)) temp_nomem();


  return r;

}


static int dkim_verify()

{

  int child;

  int wstat;

  char *(args[6]);

  int r = -1;


  args[0] = "qmail-dkim";

  args[1] = "-V";

  args[2] = fndkin.s;

  args[3] = "none";

  args[4] = fndkout.s;

  args[5] = 0;


  if (!(child = fork())) {

    pathexec(args);

    if (errno) _exit(111);

    _exit(100);

  }


  wait_pid(&wstat,child);

  if (wait_crashed(wstat)) return 1;


  switch (r = wait_exitcode(wstat)) {

    case 10: return 1;

    default: return 0;

  }

}


static int dkim_result(const char *me)

{

  int max = 80;

  int fd;

  char ch;

  int r = 0;


  if (!stralloc_copys(&result,"")) temp_nomem();


  if ((fd = open_read(fndkout.s)) == -1) return 0; // nothing to read

  while ((r = read(fd,inbuf,sizeof(inbuf))) > 0)

    if (!stralloc_catb(&result,inbuf,r)) temp_nomem();


  if (!stralloc_0(&result)) temp_nomem();


  if (result.len > 2) {

    if (case_starts(result.s,"pass")) r = 0;

    if (case_starts(result.s,"fail")) r = 35;

  } else

    if (!stralloc_copys(&result,"unknown")) temp_nomem();


  if (!stralloc_copys(&dkheader,"X-Authentication-Results: ")) temp_nomem();

  if (!stralloc_cats(&dkheader,signdomain.s)) temp_nomem();

  if (!stralloc_cats(&dkheader,"; dkim=")) temp_nomem();


  //     dkim=fail" (signature verify error: message body does not hash to bh=


  for (int j = 0; j < result.len; j++) {  // FIXME

    ch = result.s[j];

    if (ch == '\r' || ch == '\n' || ch == '\0') continue;

    if (j <= max) if (!stralloc_catb(&dkheader,&ch,1)) temp_nomem();

    if (ch == ' ' && (j > max)) {

      if (!stralloc_cats(&dkheader,"\n  ")) temp_nomem();

      max += j;

    }

  }


  if (!stralloc_cats(&dkheader,"; ")) temp_nomem();

  if (!stralloc_cats(&dkheader,me)) temp_nomem();

  if (!stralloc_0(&dkheader)) temp_nomem();


  return r;

}


static int qmail_queue()

{

  char ch;

  int fd;

  int r;

  int child;

  int wstat;

  int pi[2];

  char *(args[2]);


  if (pipe(pi) == -1) die_pipe(fndkin.s);


  args[0] = "qmail-queue";

  args[1] = 0;


  switch (child = vfork()) {

    case -1:

      close(pi[0]); close(pi[1]);

      die_write(fndkin.s);

    case  0:

      close(pi[1]);

      if (fd_move(0,pi[0]) == -1) die_pipe(fndkin.s);

      sig_pipedefault();

      pathexec(args);

      if (errno) _exit(111);

      _exit(100);

  }

  close(pi[0]);


  buffer_init(&bo,buffer_unixwrite,pi[1],outbuf,sizeof(outbuf));


  if (dkheader.len > 2) {                        // write DKIM header

    if (buffer_put(&bo,dkheader.s,dkheader.len - 1) == -1) die_write(fndkout.s);

    if (buffer_put(&bo,"\n",1) == -1) die_write(fndkout.s);

    if (buffer_flush(&bo) == -1) die_write(fndkout.s);

  }


  /* read/write message; we need to remove the CR (ok) */


  if ((fd = open_read(fndkin.s)) == -1) die_read();

  while ((r = read(fd,&ch,1)) > 0)

    if (ch != '\r')

      if (buffer_put(&bo,&ch,1) == -1) die_write(fndkin.s);


  if (buffer_flush(&bo) == -1) die_write(fndkin.s);

  close(pi[1]);


  wait_pid(&wstat,child);

  if (wait_crashed(wstat)) return 1;


  switch (r = wait_exitcode(wstat)) {

    case 10: return 1;

    default: return 0;

  }

}


static void dkim_unlink()

{

  if (unlink(fndkin.s) == -1)

    if (errno != ENOENT) temp_unlink();

  if (unlink(fndkout.s) == -1)

    if (errno != ENOENT) temp_unlink();

}


int main()

{

  int r = 0;

  char *mode = 0;


  umask(033);

  if (chdir(auto_qmail) == -1) temp_chdir();

  if (control_init() == -1) temp_control();

  if (control_readline(&me,"control/me") == -1) temp_control();

  if (!stralloc_0(&me)) temp_nomem();


  dkim_stage();


  if (mess_dkim()) {

    dkim_verify();

    r = dkim_result(me.s);

  }


  /* we are done: eventually call qmail-queue */


  mode = env_get("DKIM");

  if (!mode || *mode != '+') r = 0;

  if (!r) qmail_queue();

  dkim_unlink();


  _exit(r);

}

auto_qmail.h

auto_qmail
char auto_qmail[]

auto_queue.h

auto_queue
char auto_queue[]

die_write
void die_write()
Definition: columnt.c:17

die_read
void die_read()
Definition: columnt.c:16

control_readline
int control_readline(stralloc *sa, char *fn)
Definition: control.c:53

control_init
int control_init(void)
Definition: control.c:33

control.h

stralloc_copys
int stralloc_copys(stralloc *, char const *)

out
stralloc out
Definition: dnscname.c:12

exit.h

_exit
void _exit(int)

fmtqfn
unsigned int fmtqfn(char *s, char *dirslash, unsigned long id, int flagsplit)
Definition: fmtqfn.c:5

fmtqfn.h

FMTQFN
#define FMTQFN
Definition: fmtqfn.h:6

line
stralloc line
Definition: maildir2mbox.c:27

match
int match
Definition: matchup.c:196

me
stralloc me
Definition: newaliases.c:46

tmpbuf
char tmpbuf[BUFSIZE_LINE]
Definition: newinclude.c:38

fd
int fd
Definition: qmail-badloadertypes.c:31

fndkout
stralloc fndkout
Definition: qmail-dksign.c:70

fndkin
stralloc fndkin
Definition: qmail-dksign.c:69

outbuf
char outbuf[BUFSIZE_MESS]
Definition: qmail-dkverify.c:46

bi
buffer bi
Definition: qmail-dkverify.c:45

bo
buffer bo
Definition: qmail-dkverify.c:47

main
int main()
Definition: qmail-dkverify.c:318

inbuf
char inbuf[BUFSIZE_LINE]
Definition: qmail-dkverify.c:44

in
buffer in
Definition: qmail-pw2u.c:240

fn
stralloc fn
Definition: qmail-qmaint.c:551

id
unsigned long id
Definition: qmail-qread.c:53

j
int j
Definition: qmail-send.c:926

die
void die()
Definition: qmail-start.c:14

qmail.h

BUFSIZE_MESS
#define BUFSIZE_MESS
Definition: qmail.h:7

BUFSIZE_LINE
#define BUFSIZE_LINE
Definition: qmail.h:8

readwrite.h

zerodie
void zerodie(void)
Definition: qmail-remote.c:123

temp_nomem
void temp_nomem(void)
Definition: qmail-ldapam.c:65