1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
5 /* Copyright (c) The Exim Maintainers 2020 - 2024 */
6 /* Copyright (c) University of Cambridge 1995 - 2018 */
7 /* See the file NOTICE for conditions of use and distribution. */
8 /* SPDX-License-Identifier: GPL-2.0-or-later */
10 /* Almost all the global variables are defined together in this one header, so
11 that they are easy to find. However, those that are visible during the
12 compilation of the local_scan() function are defined separately in the
13 local_scan.h header file. */
15 /* First put any specials that are required for some operating systems. */
21 /* We need to be careful about width of int and atomicity in signal handlers,
22 especially with the rise of 64-bit systems breaking older assumptions. But
23 sig_atomic_t comes from signal.h so can't go into mytypes.h without including
24 signal support in local_scan, which seems precipitous. */
25 typedef volatile sig_atomic_t SIGNAL_BOOL;
27 /* Now things that are present only when configured. */
30 extern uschar *opt_perl_startup; /* Startup code for Perl interpreter */
31 extern BOOL opt_perl_at_start; /* Start Perl interpreter at start */
32 extern BOOL opt_perl_started; /* Set once interpreter started */
33 extern BOOL opt_perl_taintmode; /* Enable taint mode in Perl */
37 extern tree_node *dlobj_anchor; /* Tree of dynamically-loaded objects */
41 extern uschar *ibase_servers;
45 extern uschar *eldap_ca_cert_dir; /* Directory with CA certificates */
46 extern uschar *eldap_ca_cert_file; /* CA certificate file */
47 extern uschar *eldap_cert_file; /* Certificate file */
48 extern uschar *eldap_cert_key; /* Certificate key file */
49 extern uschar *eldap_cipher_suite; /* Allowed cipher suite */
50 extern uschar *eldap_default_servers; /* List of default servers */
51 extern uschar *eldap_require_cert; /* Peer certificate checking strategy */
52 extern BOOL eldap_start_tls; /* Use STARTTLS */
53 extern int eldap_version; /* LDAP version */
57 extern uschar *mysql_servers; /* List of servers and connect info */
61 extern uschar *oracle_servers; /* List of servers and connect info */
65 extern uschar *pgsql_servers; /* List of servers and connect info */
69 extern uschar *redis_servers; /* List of servers and connect info */
73 extern uschar *sqlite_dbfile; /* Filname for database */
74 extern int sqlite_lock_timeout; /* Internal lock waiting timeout */
77 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES
78 extern BOOL move_frozen_messages; /* Get them out of the normal directory */
81 /* These variables are outside the #ifdef because it keeps the code less
82 cluttered in several places (e.g. during logging) if we can always refer to
83 them. Also, the tls_ variables are now always visible. */
86 client_conn_ctx active; /* fd/socket when in a TLS session, and ptr to TLS context */
87 int bits; /* bits used in TLS session */
88 BOOL certificate_verified; /* Client certificate verified */
90 BOOL dane_verified; /* ... via DANE */
91 int tlsa_usage; /* TLSA record(s) usage */
93 uschar *cipher; /* Cipher used */
94 const uschar *cipher_stdname; /* Cipher used, RFC version */
95 const uschar *ver; /* TLS version */
97 BOOL on_connect; /* For older MTAs that don't STARTTLS */
98 uschar *on_connect_ports; /* Ports always tls-on-connect */
99 void *ourcert; /* Certificate we presented, binary */
100 void *peercert; /* Certificate of peer, binary */
101 uschar *peerdn; /* DN from peer */
102 uschar *sni; /* Server Name Indication */
103 uschar *channelbinding; /* b64'd data identifying channel, for authenticators */
105 OCSP_NOT_REQ=0, /* not requested */
106 OCSP_NOT_RESP, /* no response to request */
107 OCSP_VFY_NOT_TRIED, /* response not verified */
108 OCSP_FAILED, /* verify failed */
109 OCSP_VFIED /* verified */
110 } ocsp; /* Stapled OCSP status */
111 #ifndef DISABLE_TLS_RESUME
112 hctx resume_hctx; /* session lookup key accumulation */
113 const uschar * resume_index; /* session lookup key */
115 unsigned resumption; /* Session resumption */
116 BOOL host_resumable:1;
117 BOOL ticket_received:1;
119 BOOL verify_override:1; /* certificate_verified only due to tls_try_verify_hosts */
120 BOOL ext_master_secret:1; /* extended-master-secret was used */
121 BOOL channelbind_exporter:1; /* channelbinding is EXPORTER not UNIQUE */
123 extern tls_support tls_in;
124 extern tls_support tls_out;
127 extern BOOL gnutls_compat_mode; /* Less security, more compatibility */
128 extern BOOL gnutls_allow_auto_pkcs11; /* Let GnuTLS autoload PKCS11 modules */
129 extern uschar *hosts_require_alpn; /* Mandatory ALPN successful nogitiation */
130 extern uschar *openssl_options; /* OpenSSL compatibility options */
131 extern const pcre2_code *regex_STARTTLS; /* For recognizing STARTTLS settings */
132 extern uschar *tls_alpn; /* ALPN names acceptable */
133 extern uschar *tls_certificate; /* Certificate file */
134 extern uschar *tls_crl; /* CRL File */
135 extern int tls_dh_max_bits; /* don't accept higher lib suggestions */
136 extern uschar *tls_dhparam; /* DH param file */
137 extern uschar *tls_eccurve; /* EC curve */
138 # ifndef DISABLE_OCSP
139 extern uschar *tls_ocsp_file; /* OCSP stapling proof file */
141 extern uschar *tls_privatekey; /* Private key file */
142 extern BOOL tls_remember_esmtp; /* For YAEB */
143 extern uschar *tls_require_ciphers; /* So some can be avoided */
144 # ifndef DISABLE_TLS_RESUME
145 extern uschar *tls_resumption_hosts; /* TLS session resumption */
147 extern uschar *tls_try_verify_hosts; /* Optional client verification */
148 extern uschar *tls_verify_certificates;/* Path for certificates to check */
149 extern uschar *tls_verify_hosts; /* Mandatory client verification */
150 extern int tls_watch_fd; /* for inotify of creds files */
151 extern time_t tls_watch_trigger_time; /* non-0: triggered */
153 extern uschar *tls_advertise_hosts; /* host for which TLS is advertised */
155 extern uschar *dsn_envid; /* DSN envid string */
156 extern int dsn_ret; /* DSN ret type*/
157 extern const pcre2_code *regex_DSN; /* For recognizing DSN settings */
158 extern uschar *dsn_advertise_hosts; /* host for which TLS is advertised */
160 /* Input-reading functions for messages, so we can use special ones for
163 extern int (*lwr_receive_getc)(unsigned);
164 extern uschar * (*lwr_receive_getbuf)(unsigned *);
165 extern BOOL (*lwr_receive_hasc)(void);
166 extern int (*lwr_receive_ungetc)(int);
168 extern int (*receive_getc)(unsigned);
169 extern uschar * (*receive_getbuf)(unsigned *);
170 extern BOOL (*receive_hasc)(void);
171 extern void (*receive_get_cache)(unsigned);
172 extern int (*receive_ungetc)(int);
173 extern int (*receive_feof)(void);
174 extern int (*receive_ferror)(void);
177 /* For clearing, saving, restoring address expansion variables. We have to have
178 the size of this vector set explicitly, because it is referenced from more than
181 extern const uschar **address_expansions[ADDRESS_EXPANSIONS_COUNT];
183 /* Flags for which we don't need an address ever so can use a bitfield */
185 extern struct global_flags {
186 BOOL acl_temp_details :1; /* TRUE to give details for 4xx error */
187 BOOL active_local_from_check :1; /* For adding Sender: (switchable) */
188 BOOL active_local_sender_retain :1; /* For keeping Sender: (switchable) */
189 BOOL address_test_mode :1; /* True for -bt */
190 BOOL admin_user :1; /* True if caller can do admin */
191 BOOL allow_auth_unadvertised :1; /* As it says */
192 BOOL allow_unqualified_recipient :1; /* For local messages */ /* As it says */
193 BOOL allow_unqualified_sender :1; /* Reset for SMTP */ /* Ditto */
194 BOOL authentication_local :1; /* TRUE if non-smtp (implicit authentication) */
196 BOOL background_daemon :1; /* Set FALSE to keep in foreground */
197 BOOL bdat_readers_wanted :1; /* BDAT-handling to be pushed on readfunc stack */
199 BOOL chunking_offered :1;
200 BOOL config_changed :1; /* True if -C used */
201 BOOL continue_more :1; /* Flag more addresses waiting */
203 BOOL daemon_listen :1; /* True if listening required */
204 BOOL daemon_scion :1; /* Ancestor proc is daemon, and not re-exec'd */
205 BOOL debug_daemon :1; /* Debug the daemon process only */
206 BOOL deliver_firsttime :1; /* True for first delivery attempt */
207 BOOL deliver_force :1; /* TRUE if delivery was forced */
208 BOOL deliver_freeze :1; /* TRUE if delivery is frozen */
209 BOOL deliver_force_thaw :1; /* TRUE to force thaw in queue run */
210 BOOL deliver_manual_thaw :1; /* TRUE if manually thawed */
211 BOOL deliver_selectstring_regex :1; /* String is regex */
212 BOOL deliver_selectstring_sender_regex :1; /* String is regex */
213 BOOL disable_callout_flush :1; /* Don't flush before callouts */
214 BOOL disable_delay_flush :1; /* Don't flush before "delay" in ACL */
215 BOOL disable_logging :1; /* Disables log writing when TRUE */
217 BOOL dkim_disable_verify :1; /* Set via ACL control statement. When set, DKIM verification is disabled for the current message */
218 BOOL dkim_init_done :1; /* lazy-init status */
221 BOOL dmarc_has_been_checked :1; /* Global variable to check if test has been called yet */
222 BOOL dmarc_disable_verify :1; /* Set via ACL control statement. When set, DMARC verification is disabled for the current message */
223 BOOL dmarc_enable_forensic :1; /* Set via ACL control statement. When set, DMARC forensic reports are enabled for the current message */
225 BOOL dont_deliver :1; /* TRUE for -N option */
226 BOOL dot_ends :1; /* TRUE if "." ends non-SMTP input */
228 BOOL enable_dollar_recipients :1; /* Make $recipients available */
229 BOOL expand_string_forcedfail :1; /* TRUE if failure was "expected" */
231 BOOL filter_running :1; /* TRUE while running a filter */
233 BOOL header_rewritten :1; /* TRUE if header changed by router */
234 BOOL helo_verified :1; /* True if HELO verified */
235 BOOL helo_verify_failed :1; /* True if attempt failed */
236 BOOL host_checking_callout :1; /* TRUE if real callout wanted */
237 BOOL host_find_failed_syntax :1; /* DNS syntax check failure */
239 BOOL inetd_wait_mode :1; /* Whether running in inetd wait mode */
240 BOOL is_inetd :1; /* True for inetd calls */
242 BOOL local_error_message :1; /* True if handling one of these */
243 BOOL log_testing_mode :1; /* TRUE in various testing modes */
245 #ifdef WITH_CONTENT_SCAN
246 BOOL no_mbox_unspool :1; /* don't unlink files in /scan directory */
248 BOOL no_multiline_responses :1; /* For broken clients */
249 BOOL notifier_socket_en :1; /* Permit create of notifier socket */
251 BOOL parse_allow_group :1; /* Allow group syntax */
252 BOOL parse_found_group :1; /* In the middle of a group */
253 BOOL pipelining_enable :1; /* As it says */
254 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS)
255 BOOL proxy_session_failed :1; /* TRUE if required proxy negotiation failed */
258 BOOL queue_2stage :1; /* Run queue in 2-stage manner */
259 BOOL queue_only_policy :1; /* ACL or local_scan wants queue_only */
260 BOOL queue_run_local :1; /* Local deliveries only in queue run */
261 BOOL queue_running :1; /* TRUE for queue running process and */
262 BOOL queue_smtp :1; /* Disable all immediate SMTP (-odqs)*/
264 BOOL really_exim :1; /* FALSE in utilities */
265 BOOL receive_call_bombout :1; /* Flag for crashing log */
266 BOOL recipients_discarded :1; /* By an ACL */
267 BOOL running_in_test_harness :1; /*TRUE when running_status is patched */
269 BOOL search_find_defer :1; /* Set TRUE if lookup deferred */
270 BOOL sender_address_forced :1; /* Set by -f */
271 BOOL sender_host_notsocket :1; /* Set for -bs and -bS */
272 BOOL sender_host_unknown :1; /* TRUE for -bs and -bS except inetd */
273 BOOL sender_local :1; /* TRUE for local senders */
274 BOOL sender_name_forced :1; /* Set by -F */
275 BOOL sender_set_untrusted :1; /* Sender set by untrusted caller */
276 BOOL smtp_authenticated :1; /* Sending client has authenticated */
277 #ifndef DISABLE_PIPE_CONNECT
278 BOOL smtp_in_early_pipe_advertised :1; /* server advertised PIPECONNECT */
279 BOOL smtp_in_early_pipe_no_auth :1; /* too many authenticator names */
280 BOOL smtp_in_early_pipe_used :1; /* client did send early data */
282 BOOL smtp_in_pipelining_advertised :1; /* server advertised PIPELINING */
283 BOOL smtp_in_pipelining_used :1; /* server noted client using PIPELINING */
284 BOOL smtp_in_quit :1; /* server noted QUIT command */
285 BOOL spool_file_wireformat :1; /* current -D file has CRLF rather than NL */
286 BOOL submission_mode :1; /* Can be forced from ACL */
287 BOOL suppress_local_fixups :1; /* Can be forced from ACL */
288 BOOL suppress_local_fixups_default :1; /* former is reset to this; override with -G */
289 BOOL synchronous_delivery :1; /* TRUE if -odi is set */
290 BOOL system_filtering :1; /* TRUE when running system filter */
292 BOOL taint_check_slow :1; /* malloc/mmap are not returning distinct ranges */
293 BOOL testsuite_delays :1; /* interprocess sequencing delays, under testsuite */
294 BOOL tcp_fastopen_ok :1; /* appears to be supported by kernel */
295 BOOL tcp_in_fastopen :1; /* conn usefully used fastopen */
296 BOOL tcp_in_fastopen_data :1; /* fastopen carried data */
297 BOOL tcp_in_fastopen_logged :1; /* one-time logging */
298 BOOL tcp_out_fastopen_logged :1; /* one-time logging */
299 BOOL timestamps_utc :1; /* Use UTC for all times */
300 BOOL transport_filter_timed_out :1; /* True if it did */
301 BOOL trusted_caller :1; /* Caller is trusted */
302 BOOL trusted_config :1; /* Configuration file is trusted */
306 /* General global variables */
308 extern BOOL accept_8bitmime; /* Allow *BITMIME incoming */
309 extern uschar *add_environment; /* List of environment variables to add */
310 extern header_line *acl_added_headers; /* Headers added by an ACL */
311 extern tree_node *acl_anchor; /* Tree of named ACLs */
312 extern uschar *acl_arg[9]; /* Argument to ACL call */
313 extern int acl_narg; /* Number of arguments to ACL call */
314 extern int acl_level; /* Nesting depth and debug indent */
315 extern uschar *acl_not_smtp; /* ACL run for non-SMTP messages */
316 #ifdef WITH_CONTENT_SCAN
317 extern uschar *acl_not_smtp_mime; /* For MIME parts of ditto */
319 extern uschar *acl_not_smtp_start; /* ACL run at the beginning of a non-SMTP session */
320 extern uschar *acl_removed_headers; /* Headers deleted by an ACL */
321 extern uschar *acl_smtp_auth; /* ACL run for AUTH */
322 extern uschar *acl_smtp_connect; /* ACL run on SMTP connection */
323 extern uschar *acl_smtp_data; /* ACL run after DATA received */
325 extern uschar *acl_smtp_data_prdr; /* ACL run after DATA received if in PRDR mode*/
326 extern const pcre2_code *regex_PRDR; /* For recognizing PRDR settings */
329 extern uschar *acl_smtp_dkim; /* ACL run for DKIM signatures / domains */
331 extern uschar *acl_smtp_etrn; /* ACL run for ETRN */
332 extern uschar *acl_smtp_expn; /* ACL run for EXPN */
333 extern uschar *acl_smtp_helo; /* ACL run for HELO/EHLO */
334 extern uschar *acl_smtp_mail; /* ACL run for MAIL */
335 extern uschar *acl_smtp_mailauth; /* ACL run for MAIL AUTH */
336 #ifdef WITH_CONTENT_SCAN
337 extern uschar *acl_smtp_mime; /* ACL run after DATA, before acl_smtp_data, for each MIME part */
339 extern uschar *acl_smtp_notquit; /* ACL run for disconnects */
340 extern uschar *acl_smtp_predata; /* ACL run for DATA command */
341 extern uschar *acl_smtp_quit; /* ACL run for QUIT */
342 extern uschar *acl_smtp_rcpt; /* ACL run for RCPT */
343 extern uschar *acl_smtp_starttls; /* ACL run for STARTTLS */
344 extern uschar *acl_smtp_vrfy; /* ACL run for VRFY */
345 #ifndef DISABLE_WELLKNOWN
346 extern uschar *acl_smtp_wellknown; /* ACL run for WELLKNOWN */
348 extern tree_node *acl_var_c; /* ACL connection variables */
349 extern tree_node *acl_var_m; /* ACL message variables */
350 extern uschar *acl_verify_message; /* User message for verify failure */
351 extern string_item *acl_warn_logged; /* Logged lines */
352 extern uschar *acl_wherecodes[]; /* Response codes for ACL fails */
353 extern uschar *acl_wherenames[]; /* Names for messages */
354 extern address_item *addr_duplicate; /* Duplicate address list */
355 extern address_item address_defaults; /* Default data for address item */
356 extern const uschar *address_file; /* Name of file when delivering to one */
357 extern const uschar *address_pipe; /* Pipe command when delivering to one */
358 extern tree_node *addresslist_anchor; /* Tree of defined address lists */
359 extern int addresslist_count; /* Number defined */
360 extern gid_t *admin_groups; /* List of admin groups */
361 extern BOOL allow_domain_literals; /* As it says */
362 extern BOOL allow_mx_to_ip; /* Allow MX records to -> ip address */
363 extern BOOL allow_utf8_domains; /* For experimenting */
364 extern uschar *authenticated_fail_id; /* ID that failed authentication */
365 extern uschar *authenticated_id; /* ID that was authenticated */
366 extern uschar *authenticated_sender; /* From AUTH on MAIL */
367 extern BOOL authentication_failed; /* TRUE if AUTH was tried and failed */
368 extern uschar *authenticator_name; /* for debug and error messages */
369 extern uschar *auth_advertise_hosts; /* Only advertise to these */
370 extern auth_info * auths_available; /* List of available auth mechanisms */
371 extern auth_instance *auths; /* Chain of instantiated auths */
372 extern auth_instance auth_defaults; /* Default values */
373 extern uschar *auth_defer_msg; /* Error message for log */
374 extern uschar *auth_defer_user_msg; /* Error message for user */
375 extern const uschar *auth_vars[]; /* $authn variables */
376 extern int auto_thaw; /* Auto-thaw interval */
377 #ifdef WITH_CONTENT_SCAN
378 extern int av_failed; /* TRUE if the AV process failed */
379 extern uschar *av_scanner; /* AntiVirus scanner to use for the malware condition */
382 extern uschar *base62_chars; /* Table of base-62 characters */
383 extern uschar *bi_command; /* Command for -bi option */
384 extern uschar *big_buffer; /* Used for various temp things */
385 extern int big_buffer_size; /* Current size (can expand) */
386 #ifdef EXPERIMENTAL_BRIGHTMAIL
387 extern uschar *bmi_alt_location; /* expansion variable that contains the alternate location for the rcpt (available during routing) */
388 extern uschar *bmi_base64_tracker_verdict; /* expansion variable with base-64 encoded OLD verdict string (available during routing) */
389 extern uschar *bmi_base64_verdict; /* expansion variable with base-64 encoded verdict string (available during routing) */
390 extern uschar *bmi_config_file; /* Brightmail config file */
391 extern int bmi_deliver; /* Flag that determines if the message should be delivered to the rcpt (available during routing) */
392 extern int bmi_run; /* Flag that determines if message should be run through Brightmail server */
393 extern uschar *bmi_verdicts; /* BASE64-encoded verdicts with recipient lists */
395 extern int bsmtp_transaction_linecount; /* Start of last transaction */
396 extern int body_8bitmime; /* sender declared BODY= ; 7=7BIT, 8=8BITMIME */
397 extern uschar *bounce_message_file; /* Template file */
398 extern uschar *bounce_message_text; /* One-liner */
399 extern const uschar *bounce_recipient; /* When writing an errmsg */
400 extern BOOL bounce_return_body; /* Include body in returned message */
401 extern int bounce_return_linesize_limit; /* Max line length in return */
402 extern BOOL bounce_return_message; /* Include message in bounce */
403 extern int bounce_return_size_limit; /* Max amount to return */
404 extern uschar *bounce_sender_authentication; /* AUTH address for bounces */
406 extern uschar *callout_address; /* Address used for a malware/spamd/verify etc. callout */
407 extern int callout_cache_domain_positive_expire; /* Time for positive domain callout cache records to expire */
408 extern int callout_cache_domain_negative_expire; /* Time for negative domain callout cache records to expire */
409 extern int callout_cache_positive_expire; /* Time for positive callout cache records to expire */
410 extern int callout_cache_negative_expire; /* Time for negative callout cache records to expire */
411 extern uschar *callout_random_local_part; /* Local part to be used to check if server called will accept any local part */
412 extern uschar *check_dns_names_pattern;/* Regex for syntax check */
413 extern int check_log_inodes; /* Minimum for message acceptance */
414 extern int_eximarith_t check_log_space; /* Minimum for message acceptance */
415 extern BOOL check_rfc2047_length; /* Check RFC 2047 encoded string length */
416 extern int check_spool_inodes; /* Minimum for message acceptance */
417 extern int_eximarith_t check_spool_space; /* Minimum for message acceptance */
418 extern uschar *chunking_advertise_hosts; /* RFC 3030 CHUNKING */
419 extern unsigned chunking_datasize;
420 extern unsigned chunking_data_left;
421 extern chunking_state_t chunking_state;
422 extern uschar *client_authenticator; /* Authenticator name used for smtp delivery */
423 extern uschar *client_authenticated_id; /* "login" name used for SMTP AUTH */
424 extern uschar *client_authenticated_sender; /* AUTH option to SMTP MAIL FROM (not yet used) */
425 #ifndef DISABLE_CLIENT_CMD_LOG
426 extern gstring *client_cmd_log; /* debug log of client cmds & responses */
428 extern int clmacro_count; /* Number of command line macros */
429 extern uschar *clmacros[]; /* Copy of them, for re-exec */
430 extern BOOL commandline_checks_require_admin; /* belt and braces for insecure setups */
431 extern const uschar *connection_id; /* connection cookie for log */
432 extern int connection_max_messages;/* Max down one SMTP connection */
433 extern FILE *config_file; /* Configuration file */
434 extern const uschar *config_filename; /* Configuration file name */
435 extern gid_t config_gid; /* Additional group owner */
436 extern int config_lineno; /* Line number */
437 extern const uschar *config_main_filelist; /* List of possible config files */
438 extern uschar *config_main_filename; /* File name actually used */
439 extern uschar *config_main_directory; /* Directory where the main config file was found */
440 extern uid_t config_uid; /* Additional owner */
441 extern unsigned continue_flags; /* TLS-related info for connection */
442 #ifndef DISABLE_ESMTP_LIMITS
443 extern unsigned continue_limit_mail; /* Peer advertised limit */
444 extern unsigned continue_limit_rcpt;
445 extern unsigned continue_limit_rcptdom;
447 extern int continue_fd; /* Connection for continuation */
448 extern uschar *continue_proxy_cipher; /* TLS cipher for proxied continued delivery */
449 extern BOOL continue_proxy_dane; /* proxied conn is DANE */
450 extern uschar *continue_proxy_sni; /* proxied conn SNI */
451 extern const uschar *continue_hostname; /* Host for continued delivery */
452 extern const uschar *continue_host_address; /* IP address for ditto */
453 extern uschar continue_next_id[]; /* Next message_id from hintsdb */
454 extern int continue_sequence; /* Sequence num for continued delivery */
455 extern const uschar *continue_transport; /* Transport for continued delivery */
456 #ifndef COMPILE_UTILITY
457 extern open_db *continue_retry_db; /* Hintsdb for retries */
458 extern open_db *continue_wait_db; /* Hintsdb for wait-transport */
462 extern uschar *csa_status; /* Client SMTP Authorization result */
465 unsigned callout_hold_only:1; /* Conn is only for verify callout */
466 unsigned delivery:1; /* When to attempt */
467 unsigned defer_pass:1; /* Pass 4xx to caller rather than spooling */
468 unsigned is_tls:1; /* Conn has TLS active */
469 client_conn_ctx cctx; /* Open connection */
470 int nrcpt; /* Count of addresses */
471 uschar * transport; /* Name of transport */
472 uschar * interface; /* (address of) */
473 uschar * snd_ip; /* sending_ip_address */
474 int snd_port; /* sending_port */
475 unsigned peer_options; /* smtp_peer_options */
476 host_item host; /* Host used */
477 address_item addr; /* (Chain of) addresses */
479 extern cut_t cutthrough; /* Deliver-concurrently */
481 extern int daemon_notifier_fd; /* Unix socket for notifications */
482 extern uschar *daemon_smtp_port; /* Can be a list of ports */
483 extern int daemon_startup_retries; /* Number of times to retry */
484 extern int daemon_startup_sleep; /* Sleep between retries */
486 #ifdef EXPERIMENTAL_DCC
487 extern BOOL dcc_direct_add_header; /* directly add header */
488 extern uschar *dcc_header; /* dcc header */
489 extern uschar *dcc_result; /* dcc result */
490 extern uschar *dccifd_address; /* address of the dccifd daemon */
491 extern uschar *dccifd_options; /* options for the dccifd daemon */
494 extern int debug_fd; /* The fd for debug_file */
495 extern FILE *debug_file; /* Where to write debugging info */
496 extern int debug_notall[]; /* Debug options excluded from +all */
497 extern bit_table debug_options[]; /* Table of debug options */
498 extern int debug_options_count; /* Size of table */
499 extern unsigned debug_pretrigger_bsize;
500 extern uschar *debug_pretrigger_buf; /* circular buffer for precapture */
501 extern BOOL debug_store; /* Do extra checks on store_reset */
502 extern uschar debuglog_name[LOG_NAME_SIZE]; /* ACL-init debug */
504 extern int delay_warning[]; /* Times between warnings */
505 extern uschar *delay_warning_condition; /* Condition string for warnings */
506 extern BOOL delivery_date_remove; /* Remove delivery-date headers */
508 extern uschar *deliver_address_data; /* Arbitrary data for an address */
509 extern int deliver_datafile; /* FD for data part of message */
510 extern const uschar *deliver_domain; /* The local domain for delivery */
511 extern uschar *deliver_domain_data; /* From domain lookup */
512 extern const uschar *deliver_domain_orig; /* The original local domain for delivery */
513 extern const uschar *deliver_domain_parent; /* The parent domain for delivery */
514 extern BOOL deliver_drop_privilege; /* TRUE for unprivileged delivery */
515 extern time_t deliver_frozen_at; /* Time of freezing */
516 extern uschar *deliver_home; /* Home directory for pipes */
517 extern const uschar *deliver_host; /* (First) host for routed local deliveries */
518 /* Remote host for filter */
519 extern const uschar *deliver_host_address; /* Address for remote delivery filter */
520 extern int deliver_host_port; /* Address for remote delivery filter */
521 extern uschar *deliver_in_buffer; /* Buffer for copying file */
522 extern ino_t deliver_inode; /* Inode for appendfile */
523 extern const uschar *deliver_localpart;/* The local part for delivery */
524 extern uschar *deliver_localpart_data; /* From local part lookup (de-tainted) */
525 extern const uschar *deliver_localpart_orig; /* The original local part for delivery */
526 extern const uschar *deliver_localpart_parent; /* The parent local part for delivery */
527 extern const uschar *deliver_localpart_prefix; /* The stripped prefix, if any */
528 extern const uschar *deliver_localpart_prefix_v; /* The stripped-prefix variable portion, if any */
529 extern const uschar *deliver_localpart_suffix; /* The stripped suffix, if any */
530 extern const uschar *deliver_localpart_suffix_v; /* The stripped-suffix variable portion, if any */
531 extern uschar *deliver_out_buffer; /* Buffer for copying file */
532 extern int deliver_queue_load_max; /* Different value for queue running */
533 extern address_item *deliver_recipients; /* Current set of addresses */
534 extern uschar *deliver_selectstring; /* For selecting by recipient */
535 extern uschar *deliver_selectstring_sender; /* For selecting by sender */
536 #ifdef ENABLE_DISABLE_FSYNC
537 extern BOOL disable_fsync; /* Not for normal use */
539 extern BOOL disable_ipv6; /* Don't do any IPv6 things */
541 extern uschar *dns_again_means_nonexist; /* Domains that are badly set up */
542 extern int dns_csa_search_limit; /* How deep to search for CSA SRV records */
543 extern BOOL dns_csa_use_reverse; /* Check CSA in reverse DNS? (non-standard) */
544 extern int dns_cname_loops; /* Follow CNAMEs returned by resolver to this depth */
545 extern uschar *dns_ipv4_lookup; /* For these domains, don't look for AAAA (or A6) */
547 extern int dns_dane_ok; /* Ok to use DANE when checking TLS authenticity */
549 extern int dns_retrans; /* Retransmission time setting */
550 extern int dns_retry; /* Number of retries */
551 extern int dns_dnssec_ok; /* When constructing DNS query, set DO flag */
552 extern const uschar * dns_rc_names[]; /* Mostly for debug output */
553 extern uschar *dns_trust_aa; /* DNSSEC trust AA as AD */
554 extern int dns_use_edns0; /* Coerce EDNS0 support on/off in resolver. */
555 extern uschar *dnslist_domain; /* DNS (black) list domain */
556 extern uschar *dnslist_matched; /* DNS (black) list matched key */
557 extern uschar *dnslist_text; /* DNS (black) list text message */
558 extern uschar *dnslist_value; /* DNS (black) list IP address */
559 extern tree_node *domainlist_anchor; /* Tree of defined domain lists */
560 extern int domainlist_count; /* Number defined */
562 /* This option is now a no-opt, retained for compatibility */
563 extern BOOL drop_cr; /* For broken local MUAs */
564 extern const uschar *driver_srcfile; /* For debug & errors */
565 extern int driver_srcline; /* For debug & errors */
567 extern unsigned int dtrigger_selector; /* when to start debug */
569 extern uschar *dsn_from; /* From: string for DSNs */
571 extern BOOL envelope_to_remove; /* Remove envelope_to_headers */
572 extern int errno_quota; /* Quota errno in this OS */
573 extern int error_handling; /* Error handling style */
574 extern uschar *errors_copy; /* For taking copies of errors */
575 extern uschar *errors_reply_to; /* Reply-to for error messages */
576 extern int errors_sender_rc; /* Return after message to sender*/
578 #ifndef DISABLE_EVENT
579 extern uschar *event_action; /* expansion for delivery events */
580 extern const uschar *event_data; /* event data */
581 extern int event_defer_errno; /* error number set when a remote delivery is deferred with a host error */
582 extern const uschar *event_name; /* event classification */
585 extern gid_t exim_gid; /* To be used with exim_uid */
586 extern BOOL exim_gid_set; /* TRUE if exim_gid set */
587 extern uschar *exim_path; /* Path to exec exim */
588 extern const uschar *exim_sieve_extension_list[]; /* list of sieve extensions */
589 extern uid_t exim_uid; /* Non-root uid for exim */
590 extern BOOL exim_uid_set; /* TRUE if exim_uid set */
591 extern int expand_level; /* Nesting depth; indent for debug */
592 extern int expand_forbid; /* RDO flags for forbidding things */
593 extern int expand_nlength[]; /* Lengths of numbered strings */
594 extern int expand_nmax; /* Max numerical value */
595 extern const uschar *expand_nstring[]; /* Numbered strings */
596 extern BOOL extract_addresses_remove_arguments; /* Controls -t behaviour */
597 extern uschar *extra_local_interfaces; /* Local, non-listen interfaces */
599 extern int fake_response; /* Fake FAIL or DEFER response to data */
600 extern uschar *fake_response_text; /* User defined message for the above. Default is in globals.c. */
601 extern int filter_n[FILTER_VARIABLE_COUNT]; /* filter variables */
602 extern int filter_sn[FILTER_VARIABLE_COUNT]; /* variables set by system filter */
603 extern int filter_test; /* Filter test type */
604 extern const uschar *filter_test_sfile;/* System filter test file */
605 extern const uschar *filter_test_ufile;/* User filter test file */
606 extern uschar *filter_thisaddress; /* For address looping */
607 extern int finduser_retries; /* Retry count for getpwnam() */
608 extern uid_t fixed_never_users[]; /* Can't be overridden */
609 extern uschar *freeze_tell; /* Message on (some) freezings */
610 extern uschar *freeze_tell_config; /* The configured setting */
611 extern uschar *fudged_queue_times; /* For use in test harness */
613 extern uschar *gecos_name; /* To be expanded when pattern matches */
614 extern uschar *gecos_pattern; /* Pattern to match */
615 extern rewrite_rule *global_rewrite_rules; /* Chain of rewriting rules */
617 extern volatile sig_atomic_t had_command_timeout; /* Alarm sighandler called */
618 extern volatile sig_atomic_t had_command_sigterm; /* TERM sighandler called */
619 extern volatile sig_atomic_t had_data_timeout; /* Alarm sighandler called */
620 extern volatile sig_atomic_t had_data_sigint; /* TERM/INT sighandler called */
621 extern int header_insert_maxlen; /* Max for inserting headers */
622 extern int header_maxsize; /* Max total length for header */
623 extern int header_line_maxsize; /* Max for an individual line */
624 extern header_name header_names[]; /* Table of header names */
625 extern int header_names_size; /* Number of entries */
626 extern uschar *helo_accept_junk_hosts; /* Allowed to use junk arg */
627 extern uschar *helo_allow_chars; /* Rogue chars to allow in HELO/EHLO */
628 extern uschar *helo_lookup_domains; /* If these given, lookup host name */
629 extern uschar *helo_try_verify_hosts; /* Soft check HELO argument for these */
630 extern uschar *helo_verify_hosts; /* Hard check HELO argument for these */
631 extern const uschar *hex_digits; /* Used in several places */
632 extern uschar *hold_domains; /* Hold up deliveries to these */
633 extern uschar *host_data; /* Obtained from lookup in ACL */
634 extern uschar *host_lookup; /* For which IP addresses are always looked up */
635 extern BOOL host_lookup_deferred; /* TRUE if lookup deferred */
636 extern BOOL host_lookup_failed; /* TRUE if lookup failed */
637 extern uschar *host_lookup_order; /* Order of host lookup types */
638 extern uschar *host_lookup_msg; /* Text for why it failed */
639 extern int host_number; /* For sharing spools */
640 extern uschar *host_number_string; /* For expanding */
641 extern uschar *host_reject_connection; /* Reject these hosts */
642 extern uschar *hosts_connection_nolog; /* Limits the logging option */
643 extern uschar *hosts_require_helo; /* check for HELO/EHLO before MAIL */
644 extern uschar *hosts_treat_as_local; /* For routing */
645 #ifdef EXPERIMENTAL_XCLIENT
646 extern uschar *hosts_xclient; /* Allow XCLIENT command for specified hosts */
648 extern tree_node *hostlist_anchor; /* Tree of defined host lists */
649 extern int hostlist_count; /* Number defined */
652 extern int ignore_bounce_errors_after; /* Keep them for this time. */
653 extern BOOL ignore_fromline_local; /* Local SMTP ignore fromline */
654 extern uschar *ignore_fromline_hosts; /* Hosts permitted to send "From " */
655 extern int inetd_wait_timeout; /* Timeout for inetd wait mode */
656 extern uschar *initial_cwd; /* The directory we where in at startup */
657 extern uschar *iterate_item; /* Item from iterate list */
659 extern int journal_fd; /* Fd for journal file */
661 extern uschar *keep_environment; /* Whitelist for environment variables */
662 extern int keep_malformed; /* Time to keep malformed messages */
664 extern uschar *eldap_dn; /* Where LDAP DNs are left */
665 extern const uschar *letter_digit_hyphen_dot; /* Legitimate DNS host name chars */
666 #ifndef DISABLE_ESMTP_LIMITS
667 extern uschar *limits_advertise_hosts; /* for banner/EHLO pipelining */
669 extern int load_average; /* Most recently read load average */
670 extern BOOL local_from_check; /* For adding Sender: (global value) */
671 extern uschar *local_from_prefix; /* Permitted prefixes */
672 extern uschar *local_from_suffix; /* Permitted suffixes */
673 extern uschar *local_interfaces; /* For forcing specific interfaces */
674 #ifdef HAVE_LOCAL_SCAN
675 extern uschar *local_scan_data; /* Text returned by local_scan() */
676 extern optionlist local_scan_options[];/* Option list for local_scan() */
677 extern int local_scan_options_count; /* Size of the list */
678 extern int local_scan_timeout; /* Timeout for local_scan() */
680 extern BOOL local_sender_retain; /* Retain Sender: (with no From: check) */
681 extern gid_t local_user_gid; /* As it says; may be set in routers */
682 extern uid_t local_user_uid; /* As it says; may be set in routers */
683 extern tree_node *localpartlist_anchor;/* Tree of defined localpart lists */
684 extern int localpartlist_count; /* Number defined */
685 extern uschar *log_buffer; /* For constructing log entries */
686 extern int log_default[]; /* Initialization list for log_selector */
687 extern uschar *log_file_path; /* If unset, use default */
688 extern int log_notall[]; /* Log options excluded from +all */
689 extern bit_table log_options[]; /* Table of options */
690 extern int log_options_count; /* Size of table */
691 extern int log_reject_target; /* Target log for ACL rejections */
692 extern unsigned int log_selector[]; /* Bit map of logging options */
693 extern uschar *log_selector_string; /* As supplied in the config */
694 extern FILE *log_stderr; /* Copy of stderr for log use, or NULL */
695 extern BOOL log_timezone; /* TRUE to include the timezone in log lines */
696 extern uschar *login_sender_address; /* The actual sender address */
697 extern tree_node *lookups_tree; /* Tree of available lookups */
698 extern unsigned lookup_list_count; /* Number of entries in the list */
699 extern uschar *lookup_dnssec_authenticated; /* AD status of dns lookup */
700 extern int lookup_open_max; /* Max lookup files to cache */
701 extern uschar *lookup_value; /* Value looked up from file */
703 extern macro_item *macros; /* Configuration macros */
704 extern macro_item *macros_user; /* Non-builtin configuration macros */
705 extern macro_item *mlast; /* Last item in macro list */
706 extern uschar *mailstore_basename; /* For mailstore deliveries */
707 #ifdef WITH_CONTENT_SCAN
708 extern uschar *malware_name; /* Name of virus or malware ("W32/Klez-H") */
710 extern int max_received_linelength;/* What it says */
711 extern int max_username_length; /* For systems with broken getpwnam() */
712 extern int message_age; /* In seconds */
713 extern uschar *message_body; /* Start of message body for filter */
714 extern uschar *message_body_end; /* End of message body for filter */
715 extern BOOL message_body_newlines; /* FALSE => remove newlines */
716 extern int message_body_size; /* Sic */
717 extern int message_body_visible; /* Amount visible in message_body */
718 extern int message_ended; /* State of message reading and how ended */
719 extern uschar *message_headers; /* When built */
720 extern uschar message_id_option[]; /* -E<message-id> for use as option */
721 extern uschar *message_id_external; /* External form of following */
722 extern uschar *message_id_domain; /* Expanded to form domain-part of message_id */
723 extern uschar *message_id_text; /* Expanded to form message_id */
724 extern int message_linecount; /* As it says */
725 extern BOOL message_logs; /* TRUE to write message logs */
726 extern int message_size; /* Size of message */
727 extern uschar *message_size_limit; /* As it says */
729 extern BOOL message_smtputf8; /* Internationalized mail handling */
730 extern int message_utf8_downconvert; /* convert from utf8 */
731 extern const pcre2_code *regex_UTF8; /* For recognizing SMTPUTF8 settings */
733 extern uschar message_subdir[]; /* Subdirectory for messages */
734 extern const uschar *message_reference;/* Reference for error messages */
736 /* MIME ACL expandables */
737 #ifdef WITH_CONTENT_SCAN
738 extern int mime_anomaly_level;
739 extern const uschar *mime_anomaly_text;
740 extern uschar *mime_boundary;
741 extern uschar *mime_charset;
742 extern uschar *mime_content_description;
743 extern uschar *mime_content_disposition;
744 extern uschar *mime_content_id;
745 extern unsigned int mime_content_size;
746 extern uschar *mime_content_transfer_encoding;
747 extern uschar *mime_content_type;
748 extern uschar *mime_decoded_filename;
749 extern uschar *mime_filename;
750 extern int mime_is_multipart;
751 extern int mime_is_coverletter;
752 extern int mime_is_rfc822;
753 extern int mime_part_count;
756 extern BOOL mua_wrapper; /* TRUE when Exim is wrapping an MUA */
758 extern uid_t *never_users; /* List of uids never to be used */
759 extern uschar *notifier_socket; /* Name for daemon notifier unix-socket */
761 extern const int on; /* For setsockopt */
762 extern const int off;
764 extern optionlist optionlist_auths[]; /* These option lists are made */
765 extern int optionlist_auths_size; /* global so that readconf can */
766 extern optionlist optionlist_routers[]; /* see them for printing out */
767 extern int optionlist_routers_size; /* the options. */
768 extern optionlist optionlist_transports[];
769 extern int optionlist_transports_size;
771 extern uid_t original_euid; /* Original effective uid */
772 extern gid_t originator_gid; /* Gid of whoever wrote spool file */
773 extern uschar *originator_login; /* Login of same */
774 extern uschar *originator_name; /* Full name of same */
775 extern uid_t originator_uid; /* Uid of ditto */
776 extern uschar *override_local_interfaces; /* Value of -oX argument */
777 extern const uschar *override_pid_file_path; /* Value of -oP argument */
779 extern BOOL panic_coredump; /* SEGV rather than exit, on LOG_PANIC_DIE */
780 extern pcre2_general_context * pcre_gen_ctx; /* pcre memory management */
781 extern pcre2_compile_context * pcre_gen_cmp_ctx;
782 extern pcre2_match_context * pcre_gen_mtc_ctx;
783 extern pcre2_general_context * pcre_mlc_ctx;
784 extern pcre2_compile_context * pcre_mlc_cmp_ctx;
786 extern uschar *percent_hack_domains; /* Local domains for which '% operates */
787 extern const uschar *pid_file_path; /* For writing daemon pids */
788 #ifndef DISABLE_PIPE_CONNECT
789 extern uschar *pipe_connect_advertise_hosts; /* for banner/EHLO pipelining */
791 extern uschar *pipelining_advertise_hosts; /* As it says */
793 extern BOOL prdr_enable; /* As it says */
794 extern BOOL prdr_requested; /* Connecting mail server wants PRDR */
796 extern BOOL preserve_message_logs; /* Save msglog files */
797 extern uschar *primary_hostname; /* Primary name of this computer */
798 extern BOOL print_topbitchars; /* Topbit chars are printing chars */
799 extern uschar *process_info; /* For SIGUSR1 output */
800 extern int process_info_len;
801 extern uschar *process_log_path; /* Alternate path */
802 extern const uschar *process_purpose; /* for debug output */
803 extern BOOL prod_requires_admin; /* TRUE if prodding requires admin */
805 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS) || defined(EXPERIMENTAL_XCLIENT)
806 extern uschar *hosts_proxy; /* Hostlist which (require) use proxy protocol */
807 extern uschar *proxy_external_address; /* IP of remote interface of proxy */
808 extern int proxy_external_port; /* Port on remote interface of proxy */
809 extern uschar *proxy_local_address; /* IP of local interface of proxy */
810 extern int proxy_local_port; /* Port on local interface of proxy */
811 extern int proxy_protocol_timeout; /* Timeout for proxy negotiation */
812 extern BOOL proxy_session; /* TRUE if receiving mail from valid proxy
813 or sending via one */
816 extern uschar *prvscheck_address; /* Set during prvscheck expansion item */
817 extern uschar *prvscheck_keynum; /* Set during prvscheck expansion item */
818 extern uschar *prvscheck_result; /* Set during prvscheck expansion item */
820 extern qrunner *qrunners; /* tracking data for queues */
822 extern const uschar *qualify_domain_recipient; /* Domain to qualify recipients with */
823 extern uschar *qualify_domain_sender; /* Domain to qualify senders with */
824 extern uschar *queue_domains; /* Queue these domains */
825 #ifndef DISABLE_QUEUE_RAMP
826 extern BOOL queue_fast_ramp; /* 2-phase queue-run overlap */
828 extern BOOL queue_list_requires_admin; /* TRUE if -bp requires admin */
829 /* immediate children */
830 extern pid_t queue_run_pid; /* PID of the queue running process or 0 */
831 extern int queue_run_pipe; /* Pipe for synchronizing */
832 extern int queue_interval; /* Queue running interval */
833 extern uschar *queue_name; /* Name of queue, if nondefault spooling */
834 extern uschar *queue_name_dest; /* Destination queue, for moving messages */
835 extern BOOL queue_only; /* TRUE to disable immediate delivery */
836 extern int queue_only_load; /* Max load before auto-queue */
837 extern BOOL queue_only_load_latch; /* Latch queue_only_load TRUE */
838 extern uschar *queue_only_file; /* Queue if file exists/not-exists */
839 extern BOOL queue_only_override; /* Allow override from command line */
840 extern BOOL queue_run_in_order; /* As opposed to random */
841 extern uschar *queue_run_max; /* Max queue runners */
842 extern unsigned queue_size; /* items in queue */
843 extern time_t queue_size_next; /* next time to evaluate queue_size */
844 extern uschar *queue_smtp_domains; /* Ditto, for these domains */
846 extern unsigned int random_seed; /* Seed for random numbers */
847 extern tree_node *ratelimiters_cmd; /* Results of command ratelimit checks */
848 extern tree_node *ratelimiters_conn; /* Results of connection ratelimit checks */
849 extern tree_node *ratelimiters_mail; /* Results of per-mail ratelimit checks */
850 extern uschar *raw_active_hostname; /* Pre-expansion */
851 extern const uschar *raw_sender; /* Before rewriting */
852 extern const uschar **raw_recipients; /* Before rewriting */
853 extern int raw_recipients_count;
854 extern const uschar * rc_names[]; /* Mostly for debug output */
855 extern int rcpt_count; /* Count of RCPT commands in a message */
856 extern int rcpt_fail_count; /* Those that got 5xx */
857 extern int rcpt_defer_count; /* Those that got 4xx */
858 extern gid_t real_gid; /* Real gid */
859 extern uid_t real_uid; /* Real user running program */
860 extern int receive_linecount; /* Mainly for BSMTP errors */
861 extern int receive_messagecount; /* Mainly for BSMTP errors */
862 extern int receive_timeout; /* For non-SMTP acceptance */
863 extern int received_count; /* Count of Received: headers */
864 extern const uschar *received_for; /* For "for" field */
865 extern uschar *received_header_text; /* Definition of Received: header */
866 extern int received_headers_max; /* Max count of Received: headers */
867 extern struct timeval received_time; /* Time the message started to be received */
868 extern struct timeval received_time_complete; /* Time the message completed reception */
869 extern uschar *recipient_data; /* lookup data for recipients */
870 extern uschar *recipient_unqualified_hosts; /* Permitted unqualified recipients */
871 extern uschar *recipient_verify_failure; /* What went wrong */
872 extern int recipients_list_max; /* Maximum number fitting in list */
873 extern uschar *recipients_max; /* Max permitted */
874 extern int recipients_max_expanded;
875 extern BOOL recipients_max_reject; /* If TRUE, reject whole message */
876 extern const pcre2_code *regex_AUTH; /* For recognizing AUTH settings */
877 extern const pcre2_code *regex_check_dns_names; /* For DNS name checking */
878 extern const pcre2_code *regex_From; /* For recognizing "From_" lines */
879 extern const pcre2_code *regex_CHUNKING; /* For recognizing CHUNKING (RFC 3030) */
880 extern const pcre2_code *regex_IGNOREQUOTA; /* For recognizing IGNOREQUOTA (LMTP) */
881 #ifndef DISABLE_ESMTP_LIMITS
882 extern const pcre2_code *regex_LIMITS; /* For recognizing LIMITS */
884 extern const pcre2_code *regex_PIPELINING; /* For recognizing PIPELINING */
885 extern const pcre2_code *regex_SIZE; /* For recognizing SIZE settings */
886 #ifndef DISABLE_PIPE_CONNECT
887 extern const pcre2_code *regex_EARLY_PIPE; /* For recognizing PIPE_CONNCT */
889 extern int regex_cachesize; /* number of entries */
890 extern const pcre2_code *regex_ismsgid; /* Compiled r.e. for message ID */
891 extern const pcre2_code *regex_smtp_code; /* For recognizing SMTP codes */
892 #ifdef WHITELIST_D_MACROS
893 extern const pcre2_code *regex_whitelisted_macro; /* For -D macro values */
895 #ifdef WITH_CONTENT_SCAN
896 extern uschar *regex_match_string; /* regex that matched a line (regex ACL condition) */
897 extern const uschar *regex_vars[];
899 extern int remote_delivery_count; /* Number of remote addresses */
900 extern int remote_max_parallel; /* Maximum parallel delivery */
901 extern uschar *remote_sort_domains; /* Remote domain sorting order */
902 extern retry_config *retries; /* Chain of retry config information */
903 extern int retry_data_expire; /* When to expire retry data */
904 extern int retry_interval_max; /* Absolute maximum */
905 extern int retry_maximum_timeout; /* The maximum timeout */
906 extern const uschar *return_path; /* Return path for a message */
907 extern BOOL return_path_remove; /* Remove return-path headers */
908 extern int rewrite_existflags; /* Indicate which headers have rewrites */
909 extern uschar *rfc1413_hosts; /* RFC hosts */
910 extern int rfc1413_query_timeout; /* Timeout on RFC 1413 calls */
911 /* extern BOOL rfc821_domains; */ /* If set, syntax is 821, not 822 => being abolished */
912 extern uid_t root_gid; /* The gid for root */
913 extern uid_t root_uid; /* The uid for root */
914 extern router_info *routers_available; /* List of available router drivers */
915 extern router_instance *routers; /* Chain of instantiated routers */
916 extern router_instance router_defaults;/* Default values */
917 extern const uschar *router_name; /* Name of router last started */
918 extern tree_node *router_var; /* Variables set by router */
919 extern ip_address_item *running_interfaces; /* Host's running interfaces */
920 extern uschar *running_status; /* Flag string for testing */
921 extern int runrc; /* rc from ${run} */
923 extern uschar *search_error_message; /* Details of lookup problem */
924 extern uschar *self_hostname; /* Self host after routing->directors */
925 extern unsigned int sender_address_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender */
926 extern uschar *sender_address_data; /* address_data from sender verify */
927 extern const uschar *sender_address_unrewritten; /* Set if rewritten by verify */
928 extern uschar *sender_data; /* lookup result for senders */
929 extern unsigned int sender_domain_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender domain */
930 extern uschar *sender_fullhost; /* Sender host name + address */
931 extern BOOL sender_helo_dnssec; /* True if HELO verify used DNS and was DNSSEC */
932 extern uschar *sender_helo_name; /* Host name from HELO/EHLO */
933 extern uschar **sender_host_aliases; /* Points to list of alias names */
934 extern uschar *sender_host_auth_pubname; /* Public-name of authentication method */
935 extern unsigned int sender_host_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for incoming host */
936 extern BOOL sender_host_dnssec; /* true if sender_host_name verified in DNSSEC */
937 extern uschar *sender_ident; /* Sender identity via RFC 1413 */
938 extern uschar *sender_rate; /* Sender rate computed by ACL */
939 extern uschar *sender_rate_limit; /* Configured rate limit */
940 extern uschar *sender_rate_period; /* Configured smoothing period */
941 extern uschar *sender_rcvhost; /* Host data for Received: */
942 extern uschar *sender_unqualified_hosts; /* Permitted unqualified senders */
943 extern uschar *sender_verify_failure; /* What went wrong */
944 extern address_item *sender_verified_list; /* Saved chain of sender verifies */
945 extern address_item *sender_verified_failed; /* The one that caused denial */
946 extern uschar *sending_ip_address; /* Address of outgoing (SMTP) interface */
947 extern int sending_port; /* Port of outgoing interface */
948 extern SIGNAL_BOOL sigalrm_seen; /* Flag for sigalrm_handler */
949 extern const uschar *sigalarm_setter; /* For debug, set to callpoint of alarm() */
950 extern const uschar **sighup_argv; /* Args for re-execing after SIGHUP */
951 extern int slow_lookup_log; /* Log DNS lookups taking longer than N millisecs */
952 extern int smtp_accept_count; /* Count of connections */
953 extern BOOL smtp_accept_keepalive; /* Set keepalive on incoming */
954 extern int smtp_accept_max; /* Max SMTP connections */
955 extern int smtp_accept_max_nonmail;/* Max non-mail commands in one con */
956 extern uschar *smtp_accept_max_nonmail_hosts; /* Limit non-mail cmds from these hosts */
957 extern uschar *smtp_accept_max_per_connection; /* Max msgs per connection */
958 extern uschar *smtp_accept_max_per_host; /* Max SMTP cons from one IP addr */
959 extern int smtp_accept_queue; /* Queue after so many connections */
960 extern int smtp_accept_queue_per_connection; /* Queue after so many msgs */
961 extern int smtp_accept_reserve; /* Reserve these SMTP connections */
962 extern uschar *smtp_active_hostname; /* Hostname for this message */
963 extern int smtp_backlog_monitor; /* listen backlog level to log */
964 extern uschar *smtp_banner; /* Banner string (to be expanded) */
965 extern BOOL smtp_check_spool_space; /* TRUE to check SMTP SIZE value */
966 extern int smtp_ch_index; /* Index in smtp_connection_had */
967 extern uschar *smtp_cmd_argument; /* For all SMTP commands */
968 extern uschar *smtp_cmd_buffer; /* SMTP command buffer */
969 extern struct timeval smtp_connection_start; /* Start time of SMTP connection */
970 extern uschar smtp_connection_had[]; /* Recent SMTP commands */
971 extern int smtp_connect_backlog; /* Max backlog permitted */
972 extern double smtp_delay_mail; /* Current MAIL delay */
973 extern double smtp_delay_rcpt; /* Current RCPT delay */
974 extern BOOL smtp_enforce_sync; /* Enforce sync rules */
975 extern uschar *smtp_etrn_command; /* Command to run */
976 extern BOOL smtp_etrn_serialize; /* Only one at once */
977 extern FILE *smtp_in; /* Incoming SMTP input file */
978 extern int smtp_listen_backlog; /* Current listener socket backlog, if monitored */
979 extern int smtp_load_reserve; /* Only from reserved if load > this */
980 extern int smtp_mailcmd_count; /* Count of MAIL commands */
981 extern int smtp_mailcmd_max; /* Limit for MAIL commands */
982 extern int smtp_max_synprot_errors;/* Max syntax/protocol errors */
983 extern int smtp_max_unknown_commands; /* As it says */
984 extern uschar *smtp_names[]; /* decode for command codes */
985 extern uschar *smtp_notquit_reason; /* Global for disconnect reason */
986 extern FILE *smtp_out; /* Incoming SMTP output file */
987 extern uschar *smtp_ratelimit_hosts; /* Rate limit these hosts */
988 extern uschar *smtp_ratelimit_mail; /* Parameters for MAIL limiting */
989 extern uschar *smtp_ratelimit_rcpt; /* Parameters for RCPT limiting */
990 extern uschar *smtp_read_error; /* Message for SMTP input error */
991 extern int smtp_receive_timeout; /* Applies to each received line */
992 extern uschar *smtp_receive_timeout_s; /* ... expandable version */
993 extern uschar *smtp_reserve_hosts; /* Hosts for reserved slots */
994 extern BOOL smtp_return_error_details; /* TRUE to return full info */
995 extern int smtp_rlm_base; /* Base interval for MAIL rate limit */
996 extern double smtp_rlm_factor; /* Factor for MAIL rate limit */
997 extern int smtp_rlm_limit; /* Max delay */
998 extern int smtp_rlm_threshold; /* Threshold for RCPT rate limit */
999 extern int smtp_rlr_base; /* Base interval for RCPT rate limit */
1000 extern double smtp_rlr_factor; /* Factor for RCPT rate limit */
1001 extern int smtp_rlr_limit; /* Max delay */
1002 extern int smtp_rlr_threshold; /* Threshold for RCPT rate limit */
1003 extern unsigned smtp_peer_options; /* Global flags for passed connections */
1004 extern unsigned smtp_peer_options_wrap; /* stacked version hidden by TLS */
1006 extern uschar *smtputf8_advertise_hosts; /* ingress control */
1009 #ifdef WITH_CONTENT_SCAN
1010 extern uschar *spamd_address; /* address for the spamassassin daemon */
1011 extern uschar *spam_bar; /* the spam "bar" (textual representation of spam_score) */
1012 extern uschar *spam_report; /* the spamd report (multiline) */
1013 extern uschar *spam_action; /* the spamd recommended-action */
1014 extern uschar *spam_score; /* the spam score (float) */
1015 extern uschar *spam_score_int; /* spam_score * 10 (int) */
1017 extern BOOL split_spool_directory; /* TRUE to use multiple subdirs */
1018 extern FILE *spool_data_file; /* handle for -D file */
1019 extern uschar *spool_directory; /* Name of spool directory */
1020 extern BOOL spool_wireformat; /* can write wireformat -D files */
1022 extern uschar *srs_recipient; /* SRS recipient */
1024 extern BOOL strict_acl_vars; /* ACL variables have to be set before being used */
1025 extern int string_datestamp_offset;/* After insertion by string_format */
1026 extern int string_datestamp_length;/* After insertion by string_format */
1027 extern int string_datestamp_type; /* After insertion by string_format */
1028 extern BOOL strip_excess_angle_brackets; /* Surrounding route-addrs */
1029 extern BOOL strip_trailing_dot; /* Remove dots at ends of domains */
1030 extern const uschar *submission_domain;/* Domain for submission mode */
1031 extern const uschar *submission_name; /* User name set from ACL */
1032 extern BOOL syslog_duplication; /* FALSE => no duplicate logging */
1033 extern int syslog_facility; /* As defined by Syslog.h */
1034 extern BOOL syslog_pid; /* TRUE if PID on syslogs */
1035 extern const uschar *syslog_processname; /* 'ident' param to openlog() */
1036 extern BOOL syslog_timestamp; /* TRUE if time on syslogs */
1037 extern uschar *system_filter; /* Name of system filter file */
1039 extern uschar *system_filter_directory_transport; /* Transports for the */
1040 extern uschar *system_filter_file_transport; /* system filter */
1041 extern uschar *system_filter_pipe_transport;
1042 extern uschar *system_filter_reply_transport;
1044 extern gid_t system_filter_gid; /* Gid for running system filter */
1045 extern BOOL system_filter_gid_set; /* TRUE if gid set */
1046 extern uid_t system_filter_uid; /* Uid for running system filter */
1047 extern BOOL system_filter_uid_set; /* TRUE if uid set */
1049 extern blob tcp_fastopen_nodata; /* for zero-data TFO connect requests */
1050 extern BOOL tcp_nodelay; /* Controls TCP_NODELAY on daemon */
1051 extern tfo_state_t tcp_out_fastopen; /* TCP fast open */
1052 #ifdef USE_TCP_WRAPPERS
1053 extern uschar *tcp_wrappers_daemon_name; /* tcpwrappers daemon lookup name */
1055 extern int test_harness_load_avg; /* For use when testing */
1056 extern int thismessage_size_limit; /* Limit for this message */
1057 extern int timeout_frozen_after; /* Max time to keep frozen messages */
1058 #ifdef MEASURE_TIMING
1059 extern struct timeval timestamp_startup; /* For development measurements */
1062 extern const uschar *transport_name; /* Name of transport last started */
1063 extern int transport_count; /* Count of bytes transported */
1064 extern int transport_newlines; /* Accurate count of number of newline chars transported */
1065 extern const uschar **transport_filter_argv; /* For on-the-fly filtering */
1066 extern int transport_filter_timeout; /* Timeout for same */
1068 extern transport_info * transports_available; /* Listof available transports */
1069 extern transport_instance *transports; /* Chain of instantiated transports */
1070 extern transport_instance transport_defaults; /* Default values */
1072 extern int transport_write_timeout;/* Set to time out individual writes */
1074 extern tree_node *tree_dns_fails; /* Tree of DNS lookup failures */
1075 extern tree_node *tree_duplicates; /* Tree of duplicate addresses */
1076 extern tree_node *tree_nonrecipients; /* Tree of nonrecipient addresses */
1077 extern tree_node *tree_unusable; /* Tree of unusable addresses */
1079 extern gid_t *trusted_groups; /* List of trusted groups */
1080 extern uid_t *trusted_users; /* List of trusted users */
1081 extern uschar *timezone_string; /* Required timezone setting */
1083 extern uschar *unknown_login; /* To use when login id unknown */
1084 extern uschar *unknown_username; /* Ditto */
1085 extern uschar *untrusted_set_sender; /* Let untrusted users set these senders */
1086 extern uschar *uucp_from_pattern; /* For recognizing "From " lines */
1087 extern uschar *uucp_from_sender; /* For building the sender */
1089 extern uschar *warn_message_file; /* Template for warning messages */
1090 extern const uschar *warnmsg_delay; /* String form of delay time */
1091 extern const uschar *warnmsg_recipients; /* Recipients of warning message */
1092 extern BOOL write_rejectlog; /* Control of reject logging */
1094 extern uschar *verify_mode; /* Running a router in verify mode */
1095 extern uschar *version_copyright; /* Copyright notice */
1096 extern uschar *version_date; /* Date of compilation */
1097 extern uschar *version_cnumber; /* Compile number */
1098 extern uschar *version_string; /* Version string */
1100 extern int warning_count; /* Delay warnings sent for this msg */
1102 #ifndef DISABLE_WELLKNOWN
1103 extern uschar *wellknown_advertise_hosts;/* Allow WELLKNOWN command for specified hosts */
1104 extern uschar *wellknown_response; /* SMTP response for WELLKNOWN verb */
1107 /* End of globals.h */