X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/c38d6da94aa327f7c42a90b50508c62702412fef..3ca0ba97c4bd4f8ece7f38b60280222020c1d024:/src/src/lookups/dnsdb.c diff --git a/src/src/lookups/dnsdb.c b/src/src/lookups/dnsdb.c index 3f9dc8e78..756247d35 100644 --- a/src/src/lookups/dnsdb.c +++ b/src/src/lookups/dnsdb.c @@ -1,4 +1,4 @@ -/* $Cambridge: exim/src/src/lookups/dnsdb.c,v 1.5 2004/11/25 14:31:28 ph10 Exp $ */ +/* $Cambridge: exim/src/src/lookups/dnsdb.c,v 1.7 2004/12/21 12:21:46 ph10 Exp $ */ /************************************************* * Exim - an Internet mail transport agent * @@ -86,11 +86,17 @@ consist of a number of parts. separator character that is used when multiple records are found. The default separator is newline. -(b) If the next sequence of characters is a sequence of letters and digits +(b) If the next sequence of characters is 'defer_FOO' followed by a comma, +the defer behaviour is set to FOO. The possible behaviours are: 'strict', where +any defer causes the whole lookup to defer; 'lax', where a defer causes the +whole lookup to defer only if none of the DNS queries succeeds; and 'never', +where all defers are as if the lookup failed. The default is 'lax'. + +(c) If the next sequence of characters is a sequence of letters and digits followed by '=', it is interpreted as the name of the DNS record type. The -default is "A". +default is "TXT". -(c) Then there follows list of domain names. This is a generalized Exim list, +(d) Then there follows list of domain names. This is a generalized Exim list, which may start with '<' in order to set a specific separator. The default separator, as always, is colon. */ @@ -102,6 +108,7 @@ int rc; int size = 256; int ptr = 0; int sep = 0; +int defer_mode = PASS; int type = T_TXT; int failrc = FAIL; uschar *outsep = US"\n"; @@ -132,6 +139,40 @@ if (*keystring == '>') while (isspace(*keystring)) keystring++; } +/* Check for a defer behaviour keyword. */ + +if (strncmpic(keystring, US"defer_", 6) == 0) + { + keystring += 6; + if (strncmpic(keystring, US"strict", 6) == 0) + { + defer_mode = DEFER; + keystring += 6; + } + else if (strncmpic(keystring, US"lax", 3) == 0) + { + defer_mode = PASS; + keystring += 3; + } + else if (strncmpic(keystring, US"never", 5) == 0) + { + defer_mode = OK; + keystring += 5; + } + else + { + *errmsg = US"unsupported dnsdb defer behaviour"; + return DEFER; + } + while (isspace(*keystring)) keystring++; + if (*keystring++ != ',') + { + *errmsg = US"dnsdb defer behaviour syntax error"; + return DEFER; + } + while (isspace(*keystring)) keystring++; + } + /* If the keystring contains an = this must be preceded by a valid type name. */ if ((equals = Ustrchr(keystring, '=')) != NULL) @@ -190,10 +231,12 @@ while ((domain = string_nextinlist(&keystring, &sep, buffer, sizeof(buffer))) int searchtype = (type == T_ZNS)? T_NS : /* record type we want */ (type == T_MXH)? T_MX : type; - /* If the type is PTR, we have to construct the relevant magic lookup - key. This code is now in a separate function. */ + /* If the type is PTR, we have to construct the relevant magic lookup key if + the original is an IP address (some experimental protocols are using PTR + records for different purposes where the key string is a host name). This + code for doing the reversal is now in a separate function. */ - if (type == T_PTR) + if (type == T_PTR && string_is_ip_address(domain, NULL)) { dns_build_reverse(domain, rbuffer); domain = rbuffer; @@ -214,8 +257,9 @@ while ((domain = string_nextinlist(&keystring, &sep, buffer, sizeof(buffer))) if (rc == DNS_NOMATCH || rc == DNS_NODATA) continue; if (rc != DNS_SUCCEED) { - failrc = DEFER; - continue; + if (defer_mode == DEFER) return DEFER; /* always defer */ + else if (defer_mode == PASS) failrc = DEFER; /* defer only if all do */ + continue; /* treat defer as fail */ } /* Search the returned records */