1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
5 /* Copyright (c) University of Cambridge 1995 - 2018 */
6 /* Copyright (c) The Exim Maintainers 2020 */
7 /* See the file NOTICE for conditions of use and distribution. */
9 /* Almost all the global variables are defined together in this one header, so
10 that they are easy to find. However, those that are visible during the
11 compilation of the local_scan() function are defined separately in the
12 local_scan.h header file. */
14 /* First put any specials that are required for some operating systems. */
20 /* We need to be careful about width of int and atomicity in signal handlers,
21 especially with the rise of 64-bit systems breaking older assumptions. But
22 sig_atomic_t comes from signal.h so can't go into mytypes.h without including
23 signal support in local_scan, which seems precipitous. */
24 typedef volatile sig_atomic_t SIGNAL_BOOL;
26 /* Now things that are present only when configured. */
29 extern uschar *opt_perl_startup; /* Startup code for Perl interpreter */
30 extern BOOL opt_perl_at_start; /* Start Perl interpreter at start */
31 extern BOOL opt_perl_started; /* Set once interpreter started */
32 extern BOOL opt_perl_taintmode; /* Enable taint mode in Perl */
36 extern tree_node *dlobj_anchor; /* Tree of dynamically-loaded objects */
40 extern uschar *ibase_servers;
44 extern uschar *eldap_ca_cert_dir; /* Directory with CA certificates */
45 extern uschar *eldap_ca_cert_file; /* CA certificate file */
46 extern uschar *eldap_cert_file; /* Certificate file */
47 extern uschar *eldap_cert_key; /* Certificate key file */
48 extern uschar *eldap_cipher_suite; /* Allowed cipher suite */
49 extern uschar *eldap_default_servers; /* List of default servers */
50 extern uschar *eldap_require_cert; /* Peer certificate checking strategy */
51 extern BOOL eldap_start_tls; /* Use STARTTLS */
52 extern int eldap_version; /* LDAP version */
56 extern uschar *mysql_servers; /* List of servers and connect info */
60 extern uschar *oracle_servers; /* List of servers and connect info */
64 extern uschar *pgsql_servers; /* List of servers and connect info */
68 extern uschar *redis_servers; /* List of servers and connect info */
72 extern uschar *sqlite_dbfile; /* Filname for database */
73 extern int sqlite_lock_timeout; /* Internal lock waiting timeout */
76 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES
77 extern BOOL move_frozen_messages; /* Get them out of the normal directory */
80 /* These variables are outside the #ifdef because it keeps the code less
81 cluttered in several places (e.g. during logging) if we can always refer to
82 them. Also, the tls_ variables are now always visible. */
85 client_conn_ctx active; /* fd/socket when in a TLS session, and ptr to TLS context */
86 int bits; /* bits used in TLS session */
87 BOOL certificate_verified; /* Client certificate verified */
89 BOOL dane_verified; /* ... via DANE */
90 int tlsa_usage; /* TLSA record(s) usage */
92 uschar *cipher; /* Cipher used */
93 const uschar *cipher_stdname; /* Cipher used, RFC version */
94 const uschar *ver; /* TLS version */
96 BOOL on_connect; /* For older MTAs that don't STARTTLS */
97 uschar *on_connect_ports; /* Ports always tls-on-connect */
98 void *ourcert; /* Certificate we presented, binary */
99 void *peercert; /* Certificate of peer, binary */
100 uschar *peerdn; /* DN from peer */
101 uschar *sni; /* Server Name Indication */
102 uschar *channelbinding; /* b64'd data identifying channel, for authenticators */
104 OCSP_NOT_REQ=0, /* not requested */
105 OCSP_NOT_RESP, /* no response to request */
106 OCSP_VFY_NOT_TRIED, /* response not verified */
107 OCSP_FAILED, /* verify failed */
108 OCSP_VFIED /* verified */
109 } ocsp; /* Stapled OCSP status */
110 #ifdef EXPERIMENTAL_TLS_RESUME
111 unsigned resumption; /* Session resumption */
112 BOOL host_resumable:1;
113 BOOL ticket_received:1;
115 BOOL verify_override:1; /* certificate_verified only due to tls_try_verify_hosts */
116 BOOL ext_master_secret:1; /* extended-master-secret was used */
118 extern tls_support tls_in;
119 extern tls_support tls_out;
122 extern BOOL gnutls_compat_mode; /* Less security, more compatibility */
123 extern BOOL gnutls_allow_auto_pkcs11; /* Let GnuTLS autoload PKCS11 modules */
124 extern uschar *openssl_options; /* OpenSSL compatibility options */
125 extern const pcre *regex_STARTTLS; /* For recognizing STARTTLS settings */
126 extern uschar *tls_certificate; /* Certificate file */
127 extern uschar *tls_crl; /* CRL File */
128 extern int tls_dh_max_bits; /* don't accept higher lib suggestions */
129 extern uschar *tls_dhparam; /* DH param file */
130 extern uschar *tls_eccurve; /* EC curve */
131 # ifndef DISABLE_OCSP
132 extern uschar *tls_ocsp_file; /* OCSP stapling proof file */
134 extern uschar *tls_privatekey; /* Private key file */
135 extern BOOL tls_remember_esmtp; /* For YAEB */
136 extern uschar *tls_require_ciphers; /* So some can be avoided */
137 # ifdef EXPERIMENTAL_TLS_RESUME
138 extern uschar *tls_resumption_hosts; /* TLS session resumption */
140 extern uschar *tls_try_verify_hosts; /* Optional client verification */
141 extern uschar *tls_verify_certificates;/* Path for certificates to check */
142 extern uschar *tls_verify_hosts; /* Mandatory client verification */
144 extern uschar *tls_advertise_hosts; /* host for which TLS is advertised */
146 extern uschar *dsn_envid; /* DSN envid string */
147 extern int dsn_ret; /* DSN ret type*/
148 extern const pcre *regex_DSN; /* For recognizing DSN settings */
149 extern uschar *dsn_advertise_hosts; /* host for which TLS is advertised */
151 /* Input-reading functions for messages, so we can use special ones for
154 extern int (*lwr_receive_getc)(unsigned);
155 extern uschar * (*lwr_receive_getbuf)(unsigned *);
156 extern int (*lwr_receive_ungetc)(int);
157 extern int (*receive_getc)(unsigned);
158 extern uschar * (*receive_getbuf)(unsigned *);
159 extern void (*receive_get_cache)(void);
160 extern int (*receive_ungetc)(int);
161 extern int (*receive_feof)(void);
162 extern int (*receive_ferror)(void);
163 extern BOOL (*receive_smtp_buffered)(void);
166 /* For clearing, saving, restoring address expansion variables. We have to have
167 the size of this vector set explicitly, because it is referenced from more than
170 extern const uschar **address_expansions[ADDRESS_EXPANSIONS_COUNT];
172 /* Flags for which we don't need an address ever so can use a bitfield */
174 extern struct global_flags {
175 BOOL acl_temp_details :1; /* TRUE to give details for 4xx error */
176 BOOL active_local_from_check :1; /* For adding Sender: (switchable) */
177 BOOL active_local_sender_retain :1; /* For keeping Sender: (switchable) */
178 BOOL address_test_mode :1; /* True for -bt */
179 BOOL admin_user :1; /* True if caller can do admin */
180 BOOL allow_auth_unadvertised :1; /* As it says */
181 BOOL allow_unqualified_recipient :1; /* For local messages */ /* As it says */
182 BOOL allow_unqualified_sender :1; /* Reset for SMTP */ /* Ditto */
183 BOOL authentication_local :1; /* TRUE if non-smtp (implicit authentication) */
185 BOOL background_daemon :1; /* Set FALSE to keep in foreground */
187 BOOL chunking_offered :1;
188 BOOL config_changed :1; /* True if -C used */
189 BOOL continue_more :1; /* Flag more addresses waiting */
191 BOOL daemon_listen :1; /* True if listening required */
192 BOOL debug_daemon :1; /* Debug the daemon process only */
193 BOOL deliver_firsttime :1; /* True for first delivery attempt */
194 BOOL deliver_force :1; /* TRUE if delivery was forced */
195 BOOL deliver_freeze :1; /* TRUE if delivery is frozen */
196 BOOL deliver_force_thaw :1; /* TRUE to force thaw in queue run */
197 BOOL deliver_manual_thaw :1; /* TRUE if manually thawed */
198 BOOL deliver_selectstring_regex :1; /* String is regex */
199 BOOL deliver_selectstring_sender_regex :1; /* String is regex */
200 BOOL disable_callout_flush :1; /* Don't flush before callouts */
201 BOOL disable_delay_flush :1; /* Don't flush before "delay" in ACL */
202 BOOL disable_logging :1; /* Disables log writing when TRUE */
204 BOOL dkim_disable_verify :1; /* Set via ACL control statement. When set, DKIM verification is disabled for the current message */
205 BOOL dkim_init_done :1; /* lazy-init status */
208 BOOL dmarc_has_been_checked :1; /* Global variable to check if test has been called yet */
209 BOOL dmarc_disable_verify :1; /* Set via ACL control statement. When set, DMARC verification is disabled for the current message */
210 BOOL dmarc_enable_forensic :1; /* Set via ACL control statement. When set, DMARC forensic reports are enabled for the current message */
212 BOOL dont_deliver :1; /* TRUE for -N option */
213 BOOL dot_ends :1; /* TRUE if "." ends non-SMTP input */
215 BOOL enable_dollar_recipients :1; /* Make $recipients available */
216 BOOL expand_string_forcedfail :1; /* TRUE if failure was "expected" */
218 BOOL filter_running :1; /* TRUE while running a filter */
220 BOOL header_rewritten :1; /* TRUE if header changed by router */
221 BOOL helo_verified :1; /* True if HELO verified */
222 BOOL helo_verify_failed :1; /* True if attempt failed */
223 BOOL host_checking_callout :1; /* TRUE if real callout wanted */
224 BOOL host_find_failed_syntax :1; /* DNS syntax check failure */
226 BOOL inetd_wait_mode :1; /* Whether running in inetd wait mode */
227 BOOL is_inetd :1; /* True for inetd calls */
229 BOOL local_error_message :1; /* True if handling one of these */
230 BOOL log_testing_mode :1; /* TRUE in various testing modes */
232 #ifdef WITH_CONTENT_SCAN
233 BOOL no_mbox_unspool :1; /* don't unlink files in /scan directory */
235 BOOL no_multiline_responses :1; /* For broken clients */
237 BOOL parse_allow_group :1; /* Allow group syntax */
238 BOOL parse_found_group :1; /* In the middle of a group */
239 BOOL pipelining_enable :1; /* As it says */
240 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS)
241 BOOL proxy_session_failed :1; /* TRUE if required proxy negotiation failed */
244 BOOL queue_2stage :1; /* Run queue in 2-stage manner */
245 BOOL queue_only_policy :1; /* ACL or local_scan wants queue_only */
246 BOOL queue_run_first_delivery :1; /* If TRUE, first deliveries only */
247 BOOL queue_run_force :1; /* TRUE to force during queue run */
248 BOOL queue_run_local :1; /* Local deliveries only in queue run */
249 BOOL queue_running :1; /* TRUE for queue running process and */
250 BOOL queue_smtp :1; /* Disable all immediate SMTP (-odqs)*/
252 BOOL really_exim :1; /* FALSE in utilities */
253 BOOL receive_call_bombout :1; /* Flag for crashing log */
254 BOOL recipients_discarded :1; /* By an ACL */
255 BOOL running_in_test_harness :1; /*TRUE when running_status is patched */
257 BOOL search_find_defer :1; /* Set TRUE if lookup deferred */
258 BOOL sender_address_forced :1; /* Set by -f */
259 BOOL sender_host_notsocket :1; /* Set for -bs and -bS */
260 BOOL sender_host_unknown :1; /* TRUE for -bs and -bS except inetd */
261 BOOL sender_local :1; /* TRUE for local senders */
262 BOOL sender_name_forced :1; /* Set by -F */
263 BOOL sender_set_untrusted :1; /* Sender set by untrusted caller */
264 BOOL smtp_authenticated :1; /* Sending client has authenticated */
265 #ifndef DISABLE_PIPE_CONNECT
266 BOOL smtp_in_early_pipe_advertised :1; /* server advertised PIPE_CONNECT */
267 BOOL smtp_in_early_pipe_no_auth :1; /* too many authenticator names */
268 BOOL smtp_in_early_pipe_used :1; /* client did send early data */
270 BOOL smtp_in_pipelining_advertised :1; /* server advertised PIPELINING */
271 BOOL smtp_in_pipelining_used :1; /* server noted client using PIPELINING */
272 BOOL spool_file_wireformat :1; /* current -D file has CRLF rather than NL */
273 BOOL submission_mode :1; /* Can be forced from ACL */
274 BOOL suppress_local_fixups :1; /* Can be forced from ACL */
275 BOOL suppress_local_fixups_default :1; /* former is reset to this; override with -G */
276 BOOL synchronous_delivery :1; /* TRUE if -odi is set */
277 BOOL system_filtering :1; /* TRUE when running system filter */
279 BOOL taint_check_slow :1; /* malloc/mmap are not returning distinct ranges */
280 BOOL testsuite_delays :1; /* interprocess sequencing delays, under testsuite */
281 BOOL tcp_fastopen_ok :1; /* appears to be supported by kernel */
282 BOOL tcp_in_fastopen :1; /* conn usefully used fastopen */
283 BOOL tcp_in_fastopen_data :1; /* fastopen carried data */
284 BOOL tcp_in_fastopen_logged :1; /* one-time logging */
285 BOOL tcp_out_fastopen_logged :1; /* one-time logging */
286 BOOL timestamps_utc :1; /* Use UTC for all times */
287 BOOL transport_filter_timed_out :1; /* True if it did */
288 BOOL trusted_caller :1; /* Caller is trusted */
289 BOOL trusted_config :1; /* Configuration file is trusted */
293 /* General global variables */
295 extern BOOL accept_8bitmime; /* Allow *BITMIME incoming */
296 extern uschar *add_environment; /* List of environment variables to add */
297 extern header_line *acl_added_headers; /* Headers added by an ACL */
298 extern tree_node *acl_anchor; /* Tree of named ACLs */
299 extern uschar *acl_arg[9]; /* Argument to ACL call */
300 extern int acl_narg; /* Number of arguments to ACL call */
301 extern int acl_level; /* Nesting depth and debug indent */
302 extern uschar *acl_not_smtp; /* ACL run for non-SMTP messages */
303 #ifdef WITH_CONTENT_SCAN
304 extern uschar *acl_not_smtp_mime; /* For MIME parts of ditto */
306 extern uschar *acl_not_smtp_start; /* ACL run at the beginning of a non-SMTP session */
307 extern uschar *acl_removed_headers; /* Headers deleted by an ACL */
308 extern uschar *acl_smtp_auth; /* ACL run for AUTH */
309 extern uschar *acl_smtp_connect; /* ACL run on SMTP connection */
310 extern uschar *acl_smtp_data; /* ACL run after DATA received */
312 extern uschar *acl_smtp_data_prdr; /* ACL run after DATA received if in PRDR mode*/
313 const extern pcre *regex_PRDR; /* For recognizing PRDR settings */
316 extern uschar *acl_smtp_dkim; /* ACL run for DKIM signatures / domains */
318 extern uschar *acl_smtp_etrn; /* ACL run for ETRN */
319 extern uschar *acl_smtp_expn; /* ACL run for EXPN */
320 extern uschar *acl_smtp_helo; /* ACL run for HELO/EHLO */
321 extern uschar *acl_smtp_mail; /* ACL run for MAIL */
322 extern uschar *acl_smtp_mailauth; /* ACL run for MAIL AUTH */
323 #ifdef WITH_CONTENT_SCAN
324 extern uschar *acl_smtp_mime; /* ACL run after DATA, before acl_smtp_data, for each MIME part */
326 extern uschar *acl_smtp_notquit; /* ACL run for disconnects */
327 extern uschar *acl_smtp_predata; /* ACL run for DATA command */
328 extern uschar *acl_smtp_quit; /* ACL run for QUIT */
329 extern uschar *acl_smtp_rcpt; /* ACL run for RCPT */
330 extern uschar *acl_smtp_starttls; /* ACL run for STARTTLS */
331 extern uschar *acl_smtp_vrfy; /* ACL run for VRFY */
332 extern tree_node *acl_var_c; /* ACL connection variables */
333 extern tree_node *acl_var_m; /* ACL message variables */
334 extern uschar *acl_verify_message; /* User message for verify failure */
335 extern string_item *acl_warn_logged; /* Logged lines */
336 extern uschar *acl_wherecodes[]; /* Response codes for ACL fails */
337 extern uschar *acl_wherenames[]; /* Names for messages */
338 extern address_item *addr_duplicate; /* Duplicate address list */
339 extern address_item address_defaults; /* Default data for address item */
340 extern uschar *address_file; /* Name of file when delivering to one */
341 extern uschar *address_pipe; /* Pipe command when delivering to one */
342 extern tree_node *addresslist_anchor; /* Tree of defined address lists */
343 extern int addresslist_count; /* Number defined */
344 extern gid_t *admin_groups; /* List of admin groups */
345 extern BOOL allow_domain_literals; /* As it says */
346 extern BOOL allow_mx_to_ip; /* Allow MX records to -> ip address */
347 #ifdef EXPERIMENTAL_ARC
348 extern struct arc_set *arc_received; /* highest ARC instance evaluation struct */
349 extern int arc_received_instance; /* highest ARC instance number in headers */
350 extern int arc_oldest_pass; /* lowest passing instance number in headers */
351 extern const uschar *arc_state; /* verification state */
352 extern const uschar *arc_state_reason;
354 extern BOOL allow_utf8_domains; /* For experimenting */
355 extern uschar *authenticated_fail_id; /* ID that failed authentication */
356 extern uschar *authenticated_id; /* ID that was authenticated */
357 extern uschar *authenticated_sender; /* From AUTH on MAIL */
358 extern BOOL authentication_failed; /* TRUE if AUTH was tried and failed */
359 extern uschar *auth_advertise_hosts; /* Only advertise to these */
360 extern auth_info auths_available[]; /* Vector of available auth mechanisms */
361 extern auth_instance *auths; /* Chain of instantiated auths */
362 extern auth_instance auth_defaults; /* Default values */
363 extern uschar *auth_defer_msg; /* Error message for log */
364 extern uschar *auth_defer_user_msg; /* Error message for user */
365 extern uschar *auth_vars[]; /* $authn variables */
366 extern int auto_thaw; /* Auto-thaw interval */
367 #ifdef WITH_CONTENT_SCAN
368 extern int av_failed; /* TRUE if the AV process failed */
369 extern uschar *av_scanner; /* AntiVirus scanner to use for the malware condition */
372 extern uschar *base62_chars; /* Table of base-62 characters */
373 extern uschar *bi_command; /* Command for -bi option */
374 extern uschar *big_buffer; /* Used for various temp things */
375 extern int big_buffer_size; /* Current size (can expand) */
376 #ifdef EXPERIMENTAL_BRIGHTMAIL
377 extern uschar *bmi_alt_location; /* expansion variable that contains the alternate location for the rcpt (available during routing) */
378 extern uschar *bmi_base64_tracker_verdict; /* expansion variable with base-64 encoded OLD verdict string (available during routing) */
379 extern uschar *bmi_base64_verdict; /* expansion variable with base-64 encoded verdict string (available during routing) */
380 extern uschar *bmi_config_file; /* Brightmail config file */
381 extern int bmi_deliver; /* Flag that determines if the message should be delivered to the rcpt (available during routing) */
382 extern int bmi_run; /* Flag that determines if message should be run through Brightmail server */
383 extern uschar *bmi_verdicts; /* BASE64-encoded verdicts with recipient lists */
385 extern int bsmtp_transaction_linecount; /* Start of last transaction */
386 extern int body_8bitmime; /* sender declared BODY= ; 7=7BIT, 8=8BITMIME */
387 extern uschar *bounce_message_file; /* Template file */
388 extern uschar *bounce_message_text; /* One-liner */
389 extern uschar *bounce_recipient; /* When writing an errmsg */
390 extern BOOL bounce_return_body; /* Include body in returned message */
391 extern int bounce_return_linesize_limit; /* Max line length in return */
392 extern BOOL bounce_return_message; /* Include message in bounce */
393 extern int bounce_return_size_limit; /* Max amount to return */
394 extern uschar *bounce_sender_authentication; /* AUTH address for bounces */
396 extern uschar *callout_address; /* Address used for a malware/spamd/verify etc. callout */
397 extern int callout_cache_domain_positive_expire; /* Time for positive domain callout cache records to expire */
398 extern int callout_cache_domain_negative_expire; /* Time for negative domain callout cache records to expire */
399 extern int callout_cache_positive_expire; /* Time for positive callout cache records to expire */
400 extern int callout_cache_negative_expire; /* Time for negative callout cache records to expire */
401 extern uschar *callout_random_local_part; /* Local part to be used to check if server called will accept any local part */
402 extern uschar *check_dns_names_pattern;/* Regex for syntax check */
403 extern int check_log_inodes; /* Minimum for message acceptance */
404 extern int_eximarith_t check_log_space; /* Minimum for message acceptance */
405 extern BOOL check_rfc2047_length; /* Check RFC 2047 encoded string length */
406 extern int check_spool_inodes; /* Minimum for message acceptance */
407 extern int_eximarith_t check_spool_space; /* Minimum for message acceptance */
408 extern uschar *chunking_advertise_hosts; /* RFC 3030 CHUNKING */
409 extern unsigned chunking_datasize;
410 extern unsigned chunking_data_left;
411 extern chunking_state_t chunking_state;
412 extern uschar *client_authenticator; /* Authenticator name used for smtp delivery */
413 extern uschar *client_authenticated_id; /* "login" name used for SMTP AUTH */
414 extern uschar *client_authenticated_sender; /* AUTH option to SMTP MAIL FROM (not yet used) */
415 extern int clmacro_count; /* Number of command line macros */
416 extern uschar *clmacros[]; /* Copy of them, for re-exec */
417 extern BOOL commandline_checks_require_admin; /* belt and braces for insecure setups */
418 extern int connection_max_messages;/* Max down one SMTP connection */
419 extern FILE *config_file; /* Configuration file */
420 extern const uschar *config_filename; /* Configuration file name */
421 extern gid_t config_gid; /* Additional group owner */
422 extern int config_lineno; /* Line number */
423 extern uschar *config_main_filelist; /* List of possible config files */
424 extern uschar *config_main_filename; /* File name actually used */
425 extern uschar *config_main_directory; /* Directory where the main config file was found */
426 extern uid_t config_uid; /* Additional owner */
427 extern uschar *continue_proxy_cipher; /* TLS cipher for proxied continued delivery */
428 extern uschar *continue_hostname; /* Host for continued delivery */
429 extern uschar *continue_host_address; /* IP address for ditto */
430 extern int continue_sequence; /* Sequence num for continued delivery */
431 extern uschar *continue_transport; /* Transport for continued delivery */
433 extern uschar *csa_status; /* Client SMTP Authorization result */
436 unsigned callout_hold_only:1; /* Conn is only for verify callout */
437 unsigned delivery:1; /* When to attempt */
438 unsigned defer_pass:1; /* Pass 4xx to caller rather than spooling */
439 unsigned is_tls:1; /* Conn has TLS active */
440 client_conn_ctx cctx; /* Open connection */
441 int nrcpt; /* Count of addresses */
442 uschar * transport; /* Name of transport */
443 uschar * interface; /* (address of) */
444 uschar * snd_ip; /* sending_ip_address */
445 int snd_port; /* sending_port */
446 unsigned peer_options; /* smtp_peer_options */
447 host_item host; /* Host used */
448 address_item addr; /* (Chain of) addresses */
450 extern cut_t cutthrough; /* Deliver-concurrently */
452 extern int daemon_notifier_fd; /* Unix socket for notifications */
453 extern uschar *daemon_smtp_port; /* Can be a list of ports */
454 extern int daemon_startup_retries; /* Number of times to retry */
455 extern int daemon_startup_sleep; /* Sleep between retries */
457 #ifdef EXPERIMENTAL_DCC
458 extern BOOL dcc_direct_add_header; /* directly add header */
459 extern uschar *dcc_header; /* dcc header */
460 extern uschar *dcc_result; /* dcc result */
461 extern uschar *dccifd_address; /* address of the dccifd daemon */
462 extern uschar *dccifd_options; /* options for the dccifd daemon */
465 extern int debug_fd; /* The fd for debug_file */
466 extern FILE *debug_file; /* Where to write debugging info */
467 extern int debug_notall[]; /* Debug options excluded from +all */
468 extern bit_table debug_options[]; /* Table of debug options */
469 extern int debug_options_count; /* Size of table */
470 extern BOOL debug_store; /* Do extra checks on store_reset */
471 extern int delay_warning[]; /* Times between warnings */
472 extern uschar *delay_warning_condition; /* Condition string for warnings */
473 extern BOOL delivery_date_remove; /* Remove delivery-date headers */
475 extern uschar *deliver_address_data; /* Arbitrary data for an address */
476 extern int deliver_datafile; /* FD for data part of message */
477 extern const uschar *deliver_domain; /* The local domain for delivery */
478 extern uschar *deliver_domain_data; /* From domain lookup */
479 extern const uschar *deliver_domain_orig; /* The original local domain for delivery */
480 extern const uschar *deliver_domain_parent; /* The parent domain for delivery */
481 extern BOOL deliver_drop_privilege; /* TRUE for unprivileged delivery */
482 extern time_t deliver_frozen_at; /* Time of freezing */
483 extern uschar *deliver_home; /* Home directory for pipes */
484 extern const uschar *deliver_host; /* (First) host for routed local deliveries */
485 /* Remote host for filter */
486 extern const uschar *deliver_host_address; /* Address for remote delivery filter */
487 extern int deliver_host_port; /* Address for remote delivery filter */
488 extern uschar *deliver_in_buffer; /* Buffer for copying file */
489 extern ino_t deliver_inode; /* Inode for appendfile */
490 extern uschar *deliver_localpart; /* The local part for delivery */
491 extern uschar *deliver_localpart_data; /* From local part lookup (de-tainted) */
492 extern uschar *deliver_localpart_orig; /* The original local part for delivery */
493 extern uschar *deliver_localpart_parent; /* The parent local part for delivery */
494 extern uschar *deliver_localpart_prefix; /* The stripped prefix, if any */
495 extern uschar *deliver_localpart_prefix_v; /* The stripped-prefix variable portion, if any */
496 extern uschar *deliver_localpart_suffix; /* The stripped suffix, if any */
497 extern uschar *deliver_localpart_suffix_v; /* The stripped-suffix variable portion, if any */
498 extern uschar *deliver_out_buffer; /* Buffer for copying file */
499 extern int deliver_queue_load_max; /* Different value for queue running */
500 extern address_item *deliver_recipients; /* Current set of addresses */
501 extern uschar *deliver_selectstring; /* For selecting by recipient */
502 extern uschar *deliver_selectstring_sender; /* For selecting by sender */
503 #ifdef ENABLE_DISABLE_FSYNC
504 extern BOOL disable_fsync; /* Not for normal use */
506 extern BOOL disable_ipv6; /* Don't do any IPv6 things */
509 extern unsigned dkim_collect_input; /* Runtime count of dkim signtures; tracks whether SMTP input is fed to DKIM validation */
510 extern uschar *dkim_cur_signer; /* Expansion variable, holds the current "signer" domain or identity during a acl_smtp_dkim run */
511 extern int dkim_key_length; /* Expansion variable, length of signing key in bits */
512 extern void *dkim_signatures; /* Actually a (pdkim_signature *) but most files do not need to know */
513 extern uschar *dkim_signers; /* Expansion variable, holds colon-separated list of domains and identities that have signed a message */
514 extern uschar *dkim_signing_domain; /* Expansion variable, domain used for signing a message. */
515 extern uschar *dkim_signing_selector; /* Expansion variable, selector used for signing a message. */
516 extern uschar *dkim_verify_hashes; /* Preference order for signatures */
517 extern uschar *dkim_verify_keytypes; /* Preference order for signatures */
518 extern uschar *dkim_verify_min_keysizes; /* list of minimum key sizes, keyed by algo */
519 extern BOOL dkim_verify_minimal; /* Shortcircuit signture verification */
520 extern uschar *dkim_verify_overall; /* First successful domain verified, or null */
521 extern uschar *dkim_verify_signers; /* Colon-separated list of domains for each of which we call the DKIM ACL */
522 extern uschar *dkim_verify_status; /* result for this signature */
523 extern uschar *dkim_verify_reason; /* result for this signature */
526 extern uschar *dmarc_domain_policy; /* Expansion for declared policy of used domain */
527 extern uschar *dmarc_forensic_sender; /* Set sender address for forensic reports */
528 extern uschar *dmarc_history_file; /* Expansion variable, file to store dmarc results */
529 extern uschar *dmarc_status; /* Expansion variable, one word value */
530 extern uschar *dmarc_status_text; /* Expansion variable, human readable value */
531 extern uschar *dmarc_tld_file; /* Mozilla TLDs text file */
532 extern uschar *dmarc_used_domain; /* Expansion variable, domain libopendmarc chose for DMARC policy lookup */
535 extern uschar *dns_again_means_nonexist; /* Domains that are badly set up */
536 extern int dns_csa_search_limit; /* How deep to search for CSA SRV records */
537 extern BOOL dns_csa_use_reverse; /* Check CSA in reverse DNS? (non-standard) */
538 extern int dns_cname_loops; /* Follow CNAMEs returned by resolver to this depth */
539 extern uschar *dns_ipv4_lookup; /* For these domains, don't look for AAAA (or A6) */
541 extern int dns_dane_ok; /* Ok to use DANE when checking TLS authenticity */
543 extern int dns_retrans; /* Retransmission time setting */
544 extern int dns_retry; /* Number of retries */
545 extern int dns_dnssec_ok; /* When constructing DNS query, set DO flag */
546 extern uschar *dns_trust_aa; /* DNSSEC trust AA as AD */
547 extern int dns_use_edns0; /* Coerce EDNS0 support on/off in resolver. */
548 extern uschar *dnslist_domain; /* DNS (black) list domain */
549 extern uschar *dnslist_matched; /* DNS (black) list matched key */
550 extern uschar *dnslist_text; /* DNS (black) list text message */
551 extern uschar *dnslist_value; /* DNS (black) list IP address */
552 extern tree_node *domainlist_anchor; /* Tree of defined domain lists */
553 extern int domainlist_count; /* Number defined */
555 /* This option is now a no-opt, retained for compatibility */
556 extern BOOL drop_cr; /* For broken local MUAs */
558 extern uschar *dsn_from; /* From: string for DSNs */
560 extern BOOL envelope_to_remove; /* Remove envelope_to_headers */
561 extern int errno_quota; /* Quota errno in this OS */
562 extern int error_handling; /* Error handling style */
563 extern uschar *errors_copy; /* For taking copies of errors */
564 extern uschar *errors_reply_to; /* Reply-to for error messages */
565 extern int errors_sender_rc; /* Return after message to sender*/
567 #ifndef DISABLE_EVENT
568 extern uschar *event_action; /* expansion for delivery events */
569 extern uschar *event_data; /* event data */
570 extern int event_defer_errno; /* error number set when a remote delivery is deferred with a host error */
571 extern const uschar *event_name; /* event classification */
574 extern gid_t exim_gid; /* To be used with exim_uid */
575 extern BOOL exim_gid_set; /* TRUE if exim_gid set */
576 extern uschar *exim_path; /* Path to exec exim */
577 extern const uschar *exim_sieve_extension_list[]; /* list of sieve extensions */
578 extern uid_t exim_uid; /* Non-root uid for exim */
579 extern BOOL exim_uid_set; /* TRUE if exim_uid set */
580 extern int expand_level; /* Nesting depth; indent for debug */
581 extern int expand_forbid; /* RDO flags for forbidding things */
582 extern int expand_nlength[]; /* Lengths of numbered strings */
583 extern int expand_nmax; /* Max numerical value */
584 extern uschar *expand_nstring[]; /* Numbered strings */
585 extern BOOL extract_addresses_remove_arguments; /* Controls -t behaviour */
586 extern uschar *extra_local_interfaces; /* Local, non-listen interfaces */
588 extern int fake_response; /* Fake FAIL or DEFER response to data */
589 extern uschar *fake_response_text; /* User defined message for the above. Default is in globals.c. */
590 extern int filter_n[FILTER_VARIABLE_COUNT]; /* filter variables */
591 extern int filter_sn[FILTER_VARIABLE_COUNT]; /* variables set by system filter */
592 extern int filter_test; /* Filter test type */
593 extern uschar *filter_test_sfile; /* System filter test file */
594 extern uschar *filter_test_ufile; /* User filter test file */
595 extern uschar *filter_thisaddress; /* For address looping */
596 extern int finduser_retries; /* Retry count for getpwnam() */
597 extern uid_t fixed_never_users[]; /* Can't be overridden */
598 extern uschar *freeze_tell; /* Message on (some) freezings */
599 extern uschar *freeze_tell_config; /* The configured setting */
600 extern uschar *fudged_queue_times; /* For use in test harness */
602 extern uschar *gecos_name; /* To be expanded when pattern matches */
603 extern uschar *gecos_pattern; /* Pattern to match */
604 extern rewrite_rule *global_rewrite_rules; /* Chain of rewriting rules */
606 extern volatile sig_atomic_t had_command_timeout; /* Alarm sighandler called */
607 extern volatile sig_atomic_t had_command_sigterm; /* TERM sighandler called */
608 extern volatile sig_atomic_t had_data_timeout; /* Alarm sighandler called */
609 extern volatile sig_atomic_t had_data_sigint; /* TERM/INT sighandler called */
610 extern int header_insert_maxlen; /* Max for inserting headers */
611 extern int header_maxsize; /* Max total length for header */
612 extern int header_line_maxsize; /* Max for an individual line */
613 extern header_name header_names[]; /* Table of header names */
614 extern int header_names_size; /* Number of entries */
615 extern uschar *helo_accept_junk_hosts; /* Allowed to use junk arg */
616 extern uschar *helo_allow_chars; /* Rogue chars to allow in HELO/EHLO */
617 extern uschar *helo_lookup_domains; /* If these given, lookup host name */
618 extern uschar *helo_try_verify_hosts; /* Soft check HELO argument for these */
619 extern uschar *helo_verify_hosts; /* Hard check HELO argument for these */
620 extern const uschar *hex_digits; /* Used in several places */
621 extern uschar *hold_domains; /* Hold up deliveries to these */
622 extern uschar *host_data; /* Obtained from lookup in ACL */
623 extern uschar *host_lookup; /* For which IP addresses are always looked up */
624 extern BOOL host_lookup_deferred; /* TRUE if lookup deferred */
625 extern BOOL host_lookup_failed; /* TRUE if lookup failed */
626 extern uschar *host_lookup_order; /* Order of host lookup types */
627 extern uschar *host_lookup_msg; /* Text for why it failed */
628 extern int host_number; /* For sharing spools */
629 extern uschar *host_number_string; /* For expanding */
630 extern uschar *host_reject_connection; /* Reject these hosts */
631 extern tree_node *hostlist_anchor; /* Tree of defined host lists */
632 extern int hostlist_count; /* Number defined */
633 extern uschar *hosts_connection_nolog; /* Limits the logging option */
634 extern uschar *hosts_treat_as_local; /* For routing */
636 extern int ignore_bounce_errors_after; /* Keep them for this time. */
637 extern BOOL ignore_fromline_local; /* Local SMTP ignore fromline */
638 extern uschar *ignore_fromline_hosts; /* Hosts permitted to send "From " */
639 extern int inetd_wait_timeout; /* Timeout for inetd wait mode */
640 extern uschar *initial_cwd; /* The directory we where in at startup */
641 extern uschar *iterate_item; /* Item from iterate list */
643 extern int journal_fd; /* Fd for journal file */
645 extern uschar *keep_environment; /* Whitelist for environment variables */
646 extern int keep_malformed; /* Time to keep malformed messages */
648 extern uschar *eldap_dn; /* Where LDAP DNs are left */
649 extern int load_average; /* Most recently read load average */
650 extern BOOL local_from_check; /* For adding Sender: (global value) */
651 extern uschar *local_from_prefix; /* Permitted prefixes */
652 extern uschar *local_from_suffix; /* Permitted suffixes */
653 extern uschar *local_interfaces; /* For forcing specific interfaces */
654 #ifdef HAVE_LOCAL_SCAN
655 extern uschar *local_scan_data; /* Text returned by local_scan() */
656 extern optionlist local_scan_options[];/* Option list for local_scan() */
657 extern int local_scan_options_count; /* Size of the list */
658 extern int local_scan_timeout; /* Timeout for local_scan() */
660 extern BOOL local_sender_retain; /* Retain Sender: (with no From: check) */
661 extern gid_t local_user_gid; /* As it says; may be set in routers */
662 extern uid_t local_user_uid; /* As it says; may be set in routers */
663 extern tree_node *localpartlist_anchor;/* Tree of defined localpart lists */
664 extern int localpartlist_count; /* Number defined */
665 extern uschar *log_buffer; /* For constructing log entries */
666 extern int log_default[]; /* Initialization list for log_selector */
667 extern uschar *log_file_path; /* If unset, use default */
668 extern int log_notall[]; /* Log options excluded from +all */
669 extern bit_table log_options[]; /* Table of options */
670 extern int log_options_count; /* Size of table */
671 extern int log_reject_target; /* Target log for ACL rejections */
672 extern unsigned int log_selector[]; /* Bit map of logging options */
673 extern uschar *log_selector_string; /* As supplied in the config */
674 extern FILE *log_stderr; /* Copy of stderr for log use, or NULL */
675 extern BOOL log_timezone; /* TRUE to include the timezone in log lines */
676 extern uschar *login_sender_address; /* The actual sender address */
677 extern lookup_info **lookup_list; /* Array of pointers to available lookups */
678 extern int lookup_list_count; /* Number of entries in the list */
679 extern uschar *lookup_dnssec_authenticated; /* AD status of dns lookup */
680 extern int lookup_open_max; /* Max lookup files to cache */
681 extern uschar *lookup_value; /* Value looked up from file */
683 extern macro_item *macros; /* Configuration macros */
684 extern macro_item *macros_user; /* Non-builtin configuration macros */
685 extern macro_item *mlast; /* Last item in macro list */
686 extern uschar *mailstore_basename; /* For mailstore deliveries */
687 #ifdef WITH_CONTENT_SCAN
688 extern uschar *malware_name; /* Name of virus or malware ("W32/Klez-H") */
690 extern int max_received_linelength;/* What it says */
691 extern int max_username_length; /* For systems with broken getpwnam() */
692 extern int message_age; /* In seconds */
693 extern uschar *message_body; /* Start of message body for filter */
694 extern uschar *message_body_end; /* End of message body for filter */
695 extern BOOL message_body_newlines; /* FALSE => remove newlines */
696 extern int message_body_size; /* Sic */
697 extern int message_body_visible; /* Amount visible in message_body */
698 extern int message_ended; /* State of message reading and how ended */
699 extern uschar *message_headers; /* When built */
700 extern uschar message_id_option[]; /* -E<message-id> for use as option */
701 extern uschar *message_id_external; /* External form of following */
702 extern uschar *message_id_domain; /* Expanded to form domain-part of message_id */
703 extern uschar *message_id_text; /* Expanded to form message_id */
704 extern struct timeval message_id_tv; /* Time used to create last message_id */
705 extern int message_linecount; /* As it says */
706 extern BOOL message_logs; /* TRUE to write message logs */
707 extern int message_size; /* Size of message */
708 extern uschar *message_size_limit; /* As it says */
710 extern BOOL message_smtputf8; /* Internationalized mail handling */
711 extern int message_utf8_downconvert; /* convert from utf8 */
712 const extern pcre *regex_UTF8; /* For recognizing SMTPUTF8 settings */
714 extern uschar message_subdir[]; /* Subdirectory for messages */
715 extern uschar *message_reference; /* Reference for error messages */
717 /* MIME ACL expandables */
718 #ifdef WITH_CONTENT_SCAN
719 extern int mime_anomaly_level;
720 extern const uschar *mime_anomaly_text;
721 extern uschar *mime_boundary;
722 extern uschar *mime_charset;
723 extern uschar *mime_content_description;
724 extern uschar *mime_content_disposition;
725 extern uschar *mime_content_id;
726 extern unsigned int mime_content_size;
727 extern uschar *mime_content_transfer_encoding;
728 extern uschar *mime_content_type;
729 extern uschar *mime_decoded_filename;
730 extern uschar *mime_filename;
731 extern int mime_is_multipart;
732 extern int mime_is_coverletter;
733 extern int mime_is_rfc822;
734 extern int mime_part_count;
737 extern BOOL mua_wrapper; /* TRUE when Exim is wrapping an MUA */
739 extern uid_t *never_users; /* List of uids never to be used */
740 extern uschar *notifier_socket; /* Name for daemon notifier unix-socket */
742 extern const int on; /* For setsockopt */
743 extern const int off;
745 extern optionlist optionlist_auths[]; /* These option lists are made */
746 extern int optionlist_auths_size; /* global so that readconf can */
747 extern optionlist optionlist_routers[]; /* see them for printing out */
748 extern int optionlist_routers_size; /* the options. */
749 extern optionlist optionlist_transports[];
750 extern int optionlist_transports_size;
752 extern uid_t original_euid; /* Original effective uid */
753 extern gid_t originator_gid; /* Gid of whoever wrote spool file */
754 extern uschar *originator_login; /* Login of same */
755 extern uschar *originator_name; /* Full name of same */
756 extern uid_t originator_uid; /* Uid of ditto */
757 extern uschar *override_local_interfaces; /* Value of -oX argument */
758 extern uschar *override_pid_file_path; /* Value of -oP argument */
760 extern uschar *percent_hack_domains; /* Local domains for which '% operates */
761 extern uschar *pid_file_path; /* For writing daemon pids */
762 #ifndef DISABLE_PIPE_CONNECT
763 extern uschar *pipe_connect_advertise_hosts; /* for banner/EHLO pipelining */
765 extern uschar *pipelining_advertise_hosts; /* As it says */
767 extern BOOL prdr_enable; /* As it says */
768 extern BOOL prdr_requested; /* Connecting mail server wants PRDR */
770 extern BOOL preserve_message_logs; /* Save msglog files */
771 extern uschar *primary_hostname; /* Primary name of this computer */
772 extern BOOL print_topbitchars; /* Topbit chars are printing chars */
773 extern uschar *process_info; /* For SIGUSR1 output */
774 extern int process_info_len;
775 extern uschar *process_log_path; /* Alternate path */
776 extern const uschar *process_purpose; /* for debug output */
777 extern BOOL prod_requires_admin; /* TRUE if prodding requires admin */
779 #if defined(SUPPORT_PROXY) || defined(SUPPORT_SOCKS)
780 extern uschar *hosts_proxy; /* Hostlist which (require) use proxy protocol */
781 extern uschar *proxy_external_address; /* IP of remote interface of proxy */
782 extern int proxy_external_port; /* Port on remote interface of proxy */
783 extern uschar *proxy_local_address; /* IP of local interface of proxy */
784 extern int proxy_local_port; /* Port on local interface of proxy */
785 extern BOOL proxy_session; /* TRUE if receiving mail from valid proxy */
788 extern uschar *prvscheck_address; /* Set during prvscheck expansion item */
789 extern uschar *prvscheck_keynum; /* Set during prvscheck expansion item */
790 extern uschar *prvscheck_result; /* Set during prvscheck expansion item */
792 extern const uschar *qualify_domain_recipient; /* Domain to qualify recipients with */
793 extern uschar *qualify_domain_sender; /* Domain to qualify senders with */
794 extern uschar *queue_domains; /* Queue these domains */
795 #ifdef EXPERIMENTAL_QUEUE_RAMP
796 extern BOOL queue_fast_ramp; /* 2-phase queue-run overlap */
798 extern BOOL queue_list_requires_admin; /* TRUE if -bp requires admin */
799 /* immediate children */
800 extern pid_t queue_run_pid; /* PID of the queue running process or 0 */
801 extern int queue_run_pipe; /* Pipe for synchronizing */
802 extern int queue_interval; /* Queue running interval */
803 extern uschar *queue_name; /* Name of queue, if nondefault spooling */
804 extern uschar *queue_name_dest; /* Destination queue, for moving messages */
805 extern BOOL queue_only; /* TRUE to disable immediate delivery */
806 extern int queue_only_load; /* Max load before auto-queue */
807 extern BOOL queue_only_load_latch; /* Latch queue_only_load TRUE */
808 extern uschar *queue_only_file; /* Queue if file exists/not-exists */
809 extern BOOL queue_only_override; /* Allow override from command line */
810 extern BOOL queue_run_in_order; /* As opposed to random */
811 extern uschar *queue_run_max; /* Max queue runners */
812 extern unsigned queue_size; /* items in queue */
813 extern time_t queue_size_next; /* next time to evaluate queue_size */
814 extern uschar *queue_smtp_domains; /* Ditto, for these domains */
816 extern unsigned int random_seed; /* Seed for random numbers */
817 extern tree_node *ratelimiters_cmd; /* Results of command ratelimit checks */
818 extern tree_node *ratelimiters_conn; /* Results of connection ratelimit checks */
819 extern tree_node *ratelimiters_mail; /* Results of per-mail ratelimit checks */
820 extern uschar *raw_active_hostname; /* Pre-expansion */
821 extern uschar *raw_sender; /* Before rewriting */
822 extern uschar **raw_recipients; /* Before rewriting */
823 extern int raw_recipients_count;
824 extern const uschar * rc_names[]; /* Mostly for debug output */
825 extern int rcpt_count; /* Count of RCPT commands in a message */
826 extern int rcpt_fail_count; /* Those that got 5xx */
827 extern int rcpt_defer_count; /* Those that got 4xx */
828 extern gid_t real_gid; /* Real gid */
829 extern uid_t real_uid; /* Real user running program */
830 extern int receive_linecount; /* Mainly for BSMTP errors */
831 extern int receive_messagecount; /* Mainly for BSMTP errors */
832 extern int receive_timeout; /* For non-SMTP acceptance */
833 extern int received_count; /* Count of Received: headers */
834 extern uschar *received_for; /* For "for" field */
835 extern uschar *received_header_text; /* Definition of Received: header */
836 extern int received_headers_max; /* Max count of Received: headers */
837 extern struct timeval received_time; /* Time the message was received */
838 extern struct timeval received_time_taken; /* Interval the message took to be received */
839 extern uschar *recipient_data; /* lookup data for recipients */
840 extern uschar *recipient_unqualified_hosts; /* Permitted unqualified recipients */
841 extern uschar *recipient_verify_failure; /* What went wrong */
842 extern int recipients_list_max; /* Maximum number fitting in list */
843 extern int recipients_max; /* Max permitted */
844 extern BOOL recipients_max_reject; /* If TRUE, reject whole message */
845 extern const pcre *regex_AUTH; /* For recognizing AUTH settings */
846 extern const pcre *regex_check_dns_names; /* For DNS name checking */
847 extern const pcre *regex_From; /* For recognizing "From_" lines */
848 extern const pcre *regex_CHUNKING; /* For recognizing CHUNKING (RFC 3030) */
849 extern const pcre *regex_IGNOREQUOTA; /* For recognizing IGNOREQUOTA (LMTP) */
850 extern const pcre *regex_PIPELINING; /* For recognizing PIPELINING */
851 extern const pcre *regex_SIZE; /* For recognizing SIZE settings */
852 #ifndef DISABLE_PIPE_CONNECT
853 extern const pcre *regex_EARLY_PIPE; /* For recognizing PIPE_CONNCT */
855 extern const pcre *regex_ismsgid; /* Compiled r.e. for message it */
856 extern const pcre *regex_smtp_code; /* For recognizing SMTP codes */
857 extern uschar *regex_vars[]; /* $regexN variables */
858 #ifdef WHITELIST_D_MACROS
859 extern const pcre *regex_whitelisted_macro; /* For -D macro values */
861 #ifdef WITH_CONTENT_SCAN
862 extern uschar *regex_match_string; /* regex that matched a line (regex ACL condition) */
864 extern int remote_delivery_count; /* Number of remote addresses */
865 extern int remote_max_parallel; /* Maximum parallel delivery */
866 extern uschar *remote_sort_domains; /* Remote domain sorting order */
867 extern retry_config *retries; /* Chain of retry config information */
868 extern int retry_data_expire; /* When to expire retry data */
869 extern int retry_interval_max; /* Absolute maximum */
870 extern int retry_maximum_timeout; /* The maximum timeout */
871 extern uschar *return_path; /* Return path for a message */
872 extern BOOL return_path_remove; /* Remove return-path headers */
873 extern int rewrite_existflags; /* Indicate which headers have rewrites */
874 extern uschar *rfc1413_hosts; /* RFC hosts */
875 extern int rfc1413_query_timeout; /* Timeout on RFC 1413 calls */
876 /* extern BOOL rfc821_domains; */ /* If set, syntax is 821, not 822 => being abolished */
877 extern uid_t root_gid; /* The gid for root */
878 extern uid_t root_uid; /* The uid for root */
879 extern router_info routers_available[];/* Vector of available routers */
880 extern router_instance *routers; /* Chain of instantiated routers */
881 extern router_instance router_defaults;/* Default values */
882 extern uschar *router_name; /* Name of router last started */
883 extern tree_node *router_var; /* Variables set by router */
884 extern ip_address_item *running_interfaces; /* Host's running interfaces */
885 extern uschar *running_status; /* Flag string for testing */
886 extern int runrc; /* rc from ${run} */
888 extern uschar *search_error_message; /* Details of lookup problem */
889 extern uschar *self_hostname; /* Self host after routing->directors */
890 extern unsigned int sender_address_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender */
891 extern uschar *sender_address_data; /* address_data from sender verify */
892 extern uschar *sender_address_unrewritten; /* Set if rewritten by verify */
893 extern uschar *sender_data; /* lookup result for senders */
894 extern unsigned int sender_domain_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for sender domain */
895 extern uschar *sender_fullhost; /* Sender host name + address */
896 extern BOOL sender_helo_dnssec; /* True if HELO verify used DNS and was DNSSEC */
897 extern uschar *sender_helo_name; /* Host name from HELO/EHLO */
898 extern uschar **sender_host_aliases; /* Points to list of alias names */
899 extern uschar *sender_host_auth_pubname; /* Public-name of authentication method */
900 extern unsigned int sender_host_cache[(MAX_NAMED_LIST * 2)/32]; /* Cache bits for incoming host */
901 extern BOOL sender_host_dnssec; /* true if sender_host_name verified in DNSSEC */
902 extern uschar *sender_ident; /* Sender identity via RFC 1413 */
903 extern uschar *sender_rate; /* Sender rate computed by ACL */
904 extern uschar *sender_rate_limit; /* Configured rate limit */
905 extern uschar *sender_rate_period; /* Configured smoothing period */
906 extern uschar *sender_rcvhost; /* Host data for Received: */
907 extern uschar *sender_unqualified_hosts; /* Permitted unqualified senders */
908 extern uschar *sender_verify_failure; /* What went wrong */
909 extern address_item *sender_verified_list; /* Saved chain of sender verifies */
910 extern address_item *sender_verified_failed; /* The one that caused denial */
911 extern uschar *sending_ip_address; /* Address of outgoing (SMTP) interface */
912 extern int sending_port; /* Port of outgoing interface */
913 extern SIGNAL_BOOL sigalrm_seen; /* Flag for sigalrm_handler */
914 extern const uschar *sigalarm_setter; /* For debug, set to callpoint of alarm() */
915 extern uschar **sighup_argv; /* Args for re-execing after SIGHUP */
916 extern int slow_lookup_log; /* Log DNS lookups taking longer than N millisecs */
917 extern int smtp_accept_count; /* Count of connections */
918 extern BOOL smtp_accept_keepalive; /* Set keepalive on incoming */
919 extern int smtp_accept_max; /* Max SMTP connections */
920 extern int smtp_accept_max_nonmail;/* Max non-mail commands in one con */
921 extern uschar *smtp_accept_max_nonmail_hosts; /* Limit non-mail cmds from these hosts */
922 extern int smtp_accept_max_per_connection; /* Max msgs per connection */
923 extern uschar *smtp_accept_max_per_host; /* Max SMTP cons from one IP addr */
924 extern int smtp_accept_queue; /* Queue after so many connections */
925 extern int smtp_accept_queue_per_connection; /* Queue after so many msgs */
926 extern int smtp_accept_reserve; /* Reserve these SMTP connections */
927 extern uschar *smtp_active_hostname; /* Hostname for this message */
928 extern uschar *smtp_banner; /* Banner string (to be expanded) */
929 extern BOOL smtp_check_spool_space; /* TRUE to check SMTP SIZE value */
930 extern int smtp_ch_index; /* Index in smtp_connection_had */
931 extern uschar *smtp_cmd_argument; /* For all SMTP commands */
932 extern uschar *smtp_cmd_buffer; /* SMTP command buffer */
933 extern struct timeval smtp_connection_start; /* Start time of SMTP connection */
934 extern uschar smtp_connection_had[]; /* Recent SMTP commands */
935 extern int smtp_connect_backlog; /* Max backlog permitted */
936 extern double smtp_delay_mail; /* Current MAIL delay */
937 extern double smtp_delay_rcpt; /* Current RCPT delay */
938 extern BOOL smtp_enforce_sync; /* Enforce sync rules */
939 extern uschar *smtp_etrn_command; /* Command to run */
940 extern BOOL smtp_etrn_serialize; /* Only one at once */
941 extern FILE *smtp_in; /* Incoming SMTP input file */
942 extern int smtp_load_reserve; /* Only from reserved if load > this */
943 extern int smtp_mailcmd_count; /* Count of MAIL commands */
944 extern int smtp_max_synprot_errors;/* Max syntax/protocol errors */
945 extern int smtp_max_unknown_commands; /* As it says */
946 extern uschar *smtp_notquit_reason; /* Global for disconnect reason */
947 extern FILE *smtp_out; /* Incoming SMTP output file */
948 extern uschar *smtp_ratelimit_hosts; /* Rate limit these hosts */
949 extern uschar *smtp_ratelimit_mail; /* Parameters for MAIL limiting */
950 extern uschar *smtp_ratelimit_rcpt; /* Parameters for RCPT limiting */
951 extern uschar *smtp_read_error; /* Message for SMTP input error */
952 extern int smtp_receive_timeout; /* Applies to each received line */
953 extern uschar *smtp_receive_timeout_s; /* ... expandable version */
954 extern uschar *smtp_reserve_hosts; /* Hosts for reserved slots */
955 extern BOOL smtp_return_error_details; /* TRUE to return full info */
956 extern int smtp_rlm_base; /* Base interval for MAIL rate limit */
957 extern double smtp_rlm_factor; /* Factor for MAIL rate limit */
958 extern int smtp_rlm_limit; /* Max delay */
959 extern int smtp_rlm_threshold; /* Threshold for RCPT rate limit */
960 extern int smtp_rlr_base; /* Base interval for RCPT rate limit */
961 extern double smtp_rlr_factor; /* Factor for RCPT rate limit */
962 extern int smtp_rlr_limit; /* Max delay */
963 extern int smtp_rlr_threshold; /* Threshold for RCPT rate limit */
964 extern unsigned smtp_peer_options; /* Global flags for passed connections */
965 extern unsigned smtp_peer_options_wrap; /* stacked version hidden by TLS */
967 extern uschar *smtputf8_advertise_hosts; /* ingress control */
970 #ifdef WITH_CONTENT_SCAN
971 extern uschar *spamd_address; /* address for the spamassassin daemon */
972 extern uschar *spam_bar; /* the spam "bar" (textual representation of spam_score) */
973 extern uschar *spam_report; /* the spamd report (multiline) */
974 extern uschar *spam_action; /* the spamd recommended-action */
975 extern uschar *spam_score; /* the spam score (float) */
976 extern uschar *spam_score_int; /* spam_score * 10 (int) */
979 extern uschar *spf_guess; /* spf best-guess record */
980 extern uschar *spf_header_comment; /* spf header comment */
981 extern uschar *spf_received; /* Received-SPF: header */
982 extern uschar *spf_result; /* spf result in string form */
983 extern BOOL spf_result_guessed; /* spf result is of best-guess operation */
984 extern uschar *spf_smtp_comment; /* spf comment to include in SMTP reply */
986 extern BOOL split_spool_directory; /* TRUE to use multiple subdirs */
987 extern FILE *spool_data_file; /* handle for -D file */
988 extern uschar *spool_directory; /* Name of spool directory */
989 extern BOOL spool_wireformat; /* can write wireformat -D files */
990 #ifdef EXPERIMENTAL_SRS
991 extern uschar *srs_config; /* SRS config secret:max age:hash length:use timestamp:use hash */
992 extern uschar *srs_db_address; /* SRS db address */
993 extern uschar *srs_db_key; /* SRS db key */
994 extern int srs_hashlength; /* SRS hash length */
995 extern int srs_hashmin; /* SRS minimum hash length */
996 extern int srs_maxage; /* SRS max age */
997 extern uschar *srs_orig_sender; /* SRS original sender */
998 extern uschar *srs_orig_recipient; /* SRS original recipient */
999 extern uschar *srs_recipient; /* SRS recipient */
1000 extern uschar *srs_secrets; /* SRS secrets list */
1001 extern uschar *srs_status; /* SRS staus */
1002 extern BOOL srs_usehash; /* SRS use hash flag */
1003 extern BOOL srs_usetimestamp; /* SRS use timestamp flag */
1005 #ifdef EXPERIMENTAL_SRS_NATIVE
1006 extern uschar *srs_recipient; /* SRS recipient */
1008 extern BOOL strict_acl_vars; /* ACL variables have to be set before being used */
1009 extern int string_datestamp_offset;/* After insertion by string_format */
1010 extern int string_datestamp_length;/* After insertion by string_format */
1011 extern int string_datestamp_type; /* After insertion by string_format */
1012 extern BOOL strip_excess_angle_brackets; /* Surrounding route-addrs */
1013 extern BOOL strip_trailing_dot; /* Remove dots at ends of domains */
1014 extern uschar *submission_domain; /* Domain for submission mode */
1015 extern uschar *submission_name; /* User name set from ACL */
1016 extern BOOL syslog_duplication; /* FALSE => no duplicate logging */
1017 extern int syslog_facility; /* As defined by Syslog.h */
1018 extern BOOL syslog_pid; /* TRUE if PID on syslogs */
1019 extern uschar *syslog_processname; /* 'ident' param to openlog() */
1020 extern BOOL syslog_timestamp; /* TRUE if time on syslogs */
1021 extern uschar *system_filter; /* Name of system filter file */
1023 extern uschar *system_filter_directory_transport; /* Transports for the */
1024 extern uschar *system_filter_file_transport; /* system filter */
1025 extern uschar *system_filter_pipe_transport;
1026 extern uschar *system_filter_reply_transport;
1028 extern gid_t system_filter_gid; /* Gid for running system filter */
1029 extern BOOL system_filter_gid_set; /* TRUE if gid set */
1030 extern uid_t system_filter_uid; /* Uid for running system filter */
1031 extern BOOL system_filter_uid_set; /* TRUE if uid set */
1033 extern blob tcp_fastopen_nodata; /* for zero-data TFO connect requests */
1034 extern BOOL tcp_nodelay; /* Controls TCP_NODELAY on daemon */
1035 extern tfo_state_t tcp_out_fastopen; /* TCP fast open */
1036 #ifdef USE_TCP_WRAPPERS
1037 extern uschar *tcp_wrappers_daemon_name; /* tcpwrappers daemon lookup name */
1039 extern int test_harness_load_avg; /* For use when testing */
1040 extern int thismessage_size_limit; /* Limit for this message */
1041 extern int timeout_frozen_after; /* Max time to keep frozen messages */
1042 #ifdef MEASURE_TIMING
1043 extern struct timeval timestamp_startup; /* For development measurements */
1046 extern uschar *transport_name; /* Name of transport last started */
1047 extern int transport_count; /* Count of bytes transported */
1048 extern int transport_newlines; /* Accurate count of number of newline chars transported */
1049 extern const uschar **transport_filter_argv; /* For on-the-fly filtering */
1050 extern int transport_filter_timeout; /* Timeout for same */
1052 extern transport_info transports_available[]; /* Vector of available transports */
1053 extern transport_instance *transports; /* Chain of instantiated transports */
1054 extern transport_instance transport_defaults; /* Default values */
1056 extern int transport_write_timeout;/* Set to time out individual writes */
1058 extern tree_node *tree_dns_fails; /* Tree of DNS lookup failures */
1059 extern tree_node *tree_duplicates; /* Tree of duplicate addresses */
1060 extern tree_node *tree_nonrecipients; /* Tree of nonrecipient addresses */
1061 extern tree_node *tree_unusable; /* Tree of unusable addresses */
1063 extern gid_t *trusted_groups; /* List of trusted groups */
1064 extern uid_t *trusted_users; /* List of trusted users */
1065 extern uschar *timezone_string; /* Required timezone setting */
1067 extern uschar *unknown_login; /* To use when login id unknown */
1068 extern uschar *unknown_username; /* Ditto */
1069 extern uschar *untrusted_set_sender; /* Let untrusted users set these senders */
1070 extern uschar *uucp_from_pattern; /* For recognizing "From " lines */
1071 extern uschar *uucp_from_sender; /* For building the sender */
1073 extern uschar *warn_message_file; /* Template for warning messages */
1074 extern uschar *warnmsg_delay; /* String form of delay time */
1075 extern uschar *warnmsg_recipients; /* Recipients of warning message */
1076 extern BOOL write_rejectlog; /* Control of reject logging */
1078 extern uschar *verify_mode; /* Running a router in verify mode */
1079 extern uschar *version_copyright; /* Copyright notice */
1080 extern uschar *version_date; /* Date of compilation */
1081 extern uschar *version_cnumber; /* Compile number */
1082 extern uschar *version_string; /* Version string */
1084 extern int warning_count; /* Delay warnings sent for this msg */
1086 /* End of globals.h */