3 * rcfile_y.y -- Run control file parser for fetchmail
5 * For license terms, see the file COPYING in this directory.
10 #include <sys/types.h>
12 #if defined(HAVE_SYS_WAIT_H)
17 #if defined(STDC_HEADERS)
20 #if defined(HAVE_UNISTD_H)
26 #include <net/security.h>
27 #endif /* NET_SECURITY */
29 #include "fetchmail.h"
31 /* parser reads these */
32 char *rcfile; /* path name of rc file */
33 struct query cmd_opts; /* where to put command-line info */
35 /* parser sets these */
36 struct query *querylist; /* head of server list (globally visible) */
38 int yydebug; /* in case we didn't generate with -- debug */
40 static struct query current; /* current server record */
41 static int prc_errflag;
42 static struct hostdata *leadentry;
45 static void record_current();
46 static void user_reset();
47 static void reset_server(char *name, int skip);
49 /* using Bison, this arranges that yydebug messages will show actual tokens */
51 #define YYPRINT(fp, type, val) fprintf(fp, " = \"%s\"", yytext)
60 %token DEFAULTS POLL SKIP VIA AKA LOCALDOMAINS PROTOCOL
61 %token AUTHENTICATE TIMEOUT KPOP SDPS KERBEROS4 KERBEROS5 KERBEROS
62 %token ENVELOPE QVIRTUAL USERNAME PASSWORD FOLDER SMTPHOST MDA SMTPADDRESS
63 %token SPAMRESPONSE PRECONNECT POSTCONNECT LIMIT
64 %token NETSEC INTERFACE MONITOR
65 %token IS HERE THERE TO MAP WILDCARD
66 %token BATCHLIMIT FETCHLIMIT EXPUNGE PROPERTIES
67 %token SET LOGFILE DAEMON SYSLOG IDFILE INVISIBLE POSTMASTER WARNINGS
70 %token <number> NUMBER
71 %token NO KEEP FLUSH FETCHALL REWRITE FORCECR STRIPCR PASS8BITS DROPSTATUS
72 %token DNS SERVICE PORT UIDL INTERVAL MIMEDECODE CHECKALIAS
80 statement_list : statement
81 | statement_list statement
84 optmap : MAP | /* EMPTY */;
86 /* future global options should also have the form SET <name> optmap <value> */
87 statement : SET LOGFILE optmap STRING {run.logfile = xstrdup($4);}
88 | SET IDFILE optmap STRING {run.idfile = xstrdup($4);}
89 | SET DAEMON optmap NUMBER {run.poll_interval = $4;}
90 | SET POSTMASTER optmap STRING {run.postmaster = xstrdup($4);}
91 | SET SYSLOG {run.use_syslog = TRUE;}
92 | SET INVISIBLE {run.invisible = TRUE;}
95 * The way the next two productions are written depends on the fact that
96 * userspecs cannot be empty. It's a kluge to deal with files that set
97 * up a load of defaults and then have poll statements following with no
98 * user options at all.
100 | define_server serverspecs {record_current();}
101 | define_server serverspecs userspecs
103 /* detect and complain about the most common user error */
104 | define_server serverspecs userspecs serv_option
105 {yyerror("server option after user options");}
108 define_server : POLL STRING {reset_server($2, FALSE);}
109 | SKIP STRING {reset_server($2, TRUE);}
110 | DEFAULTS {reset_server("defaults", FALSE);}
113 serverspecs : /* EMPTY */
114 | serverspecs serv_option
117 alias_list : STRING {save_str(¤t.server.akalist,$1,0);}
118 | alias_list STRING {save_str(¤t.server.akalist,$2,0);}
121 domain_list : STRING {save_str(¤t.server.localdomains,$1,0);}
122 | domain_list STRING {save_str(¤t.server.localdomains,$2,0);}
125 serv_option : AKA alias_list
126 | VIA STRING {current.server.via = xstrdup($2);}
127 | LOCALDOMAINS domain_list
128 | PROTOCOL PROTO {current.server.protocol = $2;}
130 current.server.protocol = P_POP3;
132 if (current.server.preauthenticate == A_PASSWORD)
134 current.server.preauthenticate = A_KERBEROS_V5;
136 current.server.preauthenticate = A_KERBEROS_V4;
137 #endif /* KERBEROS_V5 */
139 current.server.service = KPOP_PORT;
141 current.server.port = KPOP_PORT;
146 current.server.protocol = P_POP3;
147 current.server.sdps = TRUE;
149 yyerror("SDPS not enabled.");
150 #endif /* SDPS_ENABLE */
152 | UIDL {current.server.uidl = FLAG_TRUE;}
153 | NO UIDL {current.server.uidl = FLAG_FALSE;}
154 | CHECKALIAS {current.server.checkalias = FLAG_TRUE;}
155 | NO CHECKALIAS {current.server.checkalias = FLAG_FALSE;}
158 current.server.service = $2;
163 current.server.port = $2;
166 | INTERVAL NUMBER {current.server.interval = $2;}
167 | AUTHENTICATE PASSWORD {current.server.preauthenticate = A_PASSWORD;}
168 | AUTHENTICATE KERBEROS4 {current.server.preauthenticate = A_KERBEROS_V4;}
169 | AUTHENTICATE KERBEROS5 {current.server.preauthenticate = A_KERBEROS_V5;}
170 | AUTHENTICATE KERBEROS {
172 current.server.preauthenticate = A_KERBEROS_V5;
174 current.server.preauthenticate = A_KERBEROS_V4;
175 #endif /* KERBEROS_V5 */
177 | TIMEOUT NUMBER {current.server.timeout = $2;}
179 | ENVELOPE NUMBER STRING
181 current.server.envelope =
183 current.server.envskip = $2;
187 current.server.envelope =
189 current.server.envskip = 0;
192 | QVIRTUAL STRING {current.server.qvirtual=xstrdup($2);}
198 if (net_security_strtorequest($2, &request, &requestlen))
199 yyerror("invalid security request");
201 current.server.netsec = xstrdup($2);
205 yyerror("network-security support disabled");
206 #endif /* NET_SECURITY */
209 #if defined(linux) && !defined(INET6)
210 interface_parse($2, ¤t.server);
211 #else /* defined(linux) && !defined(INET6) */
212 fprintf(stderr, "fetchmail: interface option is only supported under Linux\n");
213 #endif /* defined(linux) && !defined(INET6) */
216 #if defined(linux) && !defined(INET6)
217 current.server.monitor = xstrdup($2);
218 #else /* defined(linux) && !defined(INET6) */
219 fprintf(stderr, "fetchmail: monitor option is only supported under Linux\n");
220 #endif /* defined(linux) && !defined(INET6) */
222 | DNS {current.server.dns = FLAG_TRUE;}
223 | NO DNS {current.server.dns = FLAG_FALSE;}
224 | NO ENVELOPE {current.server.envelope = STRING_DISABLED;}
227 userspecs : user1opts {record_current(); user_reset();}
231 explicits : explicitdef {record_current(); user_reset();}
232 | explicits explicitdef {record_current(); user_reset();}
235 explicitdef : userdef user0opts
238 userdef : USERNAME STRING {current.remotename = xstrdup($2);}
239 | USERNAME mapping_list HERE
240 | USERNAME STRING THERE {current.remotename = xstrdup($2);}
243 user0opts : /* EMPTY */
244 | user0opts user_option
247 user1opts : user_option
248 | user1opts user_option
251 localnames : WILDCARD {current.wildcard = TRUE;}
252 | mapping_list {current.wildcard = FALSE;}
253 | mapping_list WILDCARD {current.wildcard = TRUE;}
256 mapping_list : mapping
257 | mapping_list mapping
261 {save_str_pair(¤t.localnames, $1, NULL);}
263 {save_str_pair(¤t.localnames, $1, $3);}
266 folder_list : STRING {save_str(¤t.mailboxes,$1,0);}
267 | folder_list STRING {save_str(¤t.mailboxes,$2,0);}
270 smtp_list : STRING {save_str(¤t.smtphunt, $1,TRUE);}
271 | smtp_list STRING {save_str(¤t.smtphunt, $2,TRUE);}
277 id=save_str(¤t.antispam,STRING_DUMMY,0);
278 id->val.status.num = $1;
283 id=save_str(¤t.antispam,STRING_DUMMY,0);
284 id->val.status.num = $2;
288 user_option : TO localnames HERE
293 | IS STRING THERE {current.remotename = xstrdup($2);}
294 | PASSWORD STRING {current.password = xstrdup($2);}
297 | SMTPADDRESS STRING {current.smtpaddress = xstrdup($2);}
298 | SPAMRESPONSE num_list
299 | MDA STRING {current.mda = xstrdup($2);}
300 | PRECONNECT STRING {current.preconnect = xstrdup($2);}
301 | POSTCONNECT STRING {current.postconnect = xstrdup($2);}
303 | KEEP {current.keep = FLAG_TRUE;}
304 | FLUSH {current.flush = FLAG_TRUE;}
305 | FETCHALL {current.fetchall = FLAG_TRUE;}
306 | REWRITE {current.rewrite = FLAG_TRUE;}
307 | FORCECR {current.forcecr = FLAG_TRUE;}
308 | STRIPCR {current.stripcr = FLAG_TRUE;}
309 | PASS8BITS {current.pass8bits = FLAG_TRUE;}
310 | DROPSTATUS {current.dropstatus = FLAG_TRUE;}
311 | MIMEDECODE {current.mimedecode = FLAG_TRUE;}
313 | NO KEEP {current.keep = FLAG_FALSE;}
314 | NO FLUSH {current.flush = FLAG_FALSE;}
315 | NO FETCHALL {current.fetchall = FLAG_FALSE;}
316 | NO REWRITE {current.rewrite = FLAG_FALSE;}
317 | NO FORCECR {current.forcecr = FLAG_FALSE;}
318 | NO STRIPCR {current.stripcr = FLAG_FALSE;}
319 | NO PASS8BITS {current.pass8bits = FLAG_FALSE;}
320 | NO DROPSTATUS {current.dropstatus = FLAG_FALSE;}
321 | NO MIMEDECODE {current.mimedecode = FLAG_FALSE;}
323 | LIMIT NUMBER {current.limit = NUM_VALUE($2);}
324 | WARNINGS NUMBER {current.warnings = NUM_VALUE($2);}
325 | FETCHLIMIT NUMBER {current.fetchlimit = NUM_VALUE($2);}
326 | BATCHLIMIT NUMBER {current.batchlimit = NUM_VALUE($2);}
327 | EXPUNGE NUMBER {current.expunge = NUM_VALUE($2);}
329 | PROPERTIES STRING {current.properties = xstrdup($2);}
333 /* lexer interface */
335 extern int prc_lineno;
339 static struct query *hosttail; /* where to add new elements */
341 void yyerror (const char *s)
342 /* report a syntax error */
344 error_at_line( 0, 0, rcfile, prc_lineno, "%s at %s", s,
345 (yytext && yytext[0]) ? yytext : "end of input");
349 int prc_filecheck(const char *pathname, const flag securecheck)
350 /* check that a configuration file is secure */
357 /* special cases useful for debugging purposes */
358 if (strcmp("/dev/null", pathname) == 0)
361 /* the run control file must have the same uid as the REAL uid of this
362 process, it must have permissions no greater than 600, and it must not
363 be a symbolic link. We check these conditions here. */
365 if (lstat(pathname, &statbuf) < 0) {
369 error(0, errno, "lstat: %s", pathname);
374 if (!securecheck) return 0;
376 if ((statbuf.st_mode & S_IFLNK) == S_IFLNK)
378 fprintf(stderr, "File %s must not be a symbolic link.\n", pathname);
382 if (statbuf.st_mode & ~(S_IFREG | S_IREAD | S_IWRITE | S_IEXEC | S_IXGRP))
384 fprintf(stderr, "File %s must have no more than -rwx--x--- (0710) permissions.\n",
389 if (statbuf.st_uid != getuid())
391 fprintf(stderr, "File %s must be owned by you.\n", pathname);
398 int prc_parse_file (const char *pathname, const flag securecheck)
399 /* digest the configuration into a linked list of host records */
402 querylist = hosttail = (struct query *)NULL;
406 /* Check that the file is secure */
407 if ( (prc_errflag = prc_filecheck(pathname, securecheck)) != 0 )
413 /* Open the configuration and feed it to the lexer. */
414 if ((yyin = fopen(pathname,"r")) == (FILE *)NULL) {
415 error(0, errno, "open: %s", pathname);
419 yyparse(); /* parse entire file */
429 static void reset_server(char *name, int skip)
430 /* clear the entire global record and initialize it with a new name */
433 memset(¤t,'\0',sizeof(current));
434 current.smtp_socket = -1;
435 current.server.pollname = xstrdup(name);
436 current.server.skip = skip;
440 static void user_reset(void)
441 /* clear the global current record (user parameters) used by the parser */
443 struct hostdata save;
446 * Purpose of this code is to initialize the new server block, but
447 * preserve whatever server name was previously set. Also
448 * preserve server options unless the command-line explicitly
451 save = current.server;
453 memset(¤t, '\0', sizeof(current));
454 current.smtp_socket = -1;
456 current.server = save;
459 struct query *hostalloc(init)
460 /* append a host record to the host list */
461 struct query *init; /* pointer to block containing initial values */
465 /* allocate new node */
466 node = (struct query *) xmalloc(sizeof(struct query));
470 memcpy(node, init, sizeof(struct query));
473 memset(node, '\0', sizeof(struct query));
474 node->smtp_socket = -1;
477 /* append to end of list */
478 if (hosttail != (struct query *) 0)
479 hosttail->next = node; /* list contains at least one element */
481 querylist = node; /* list is empty */
485 node->server.lead_server = leadentry;
488 node->server.lead_server = NULL;
489 leadentry = &node->server;
495 static void record_current(void)
496 /* register current parameters and append to the host list */
498 (void) hostalloc(¤t);
502 /* easier to do this than cope with variations in where the library lives */
503 int yywrap(void) {return 1;}
505 /* rcfile_y.y ends here */