secret/postfix_src/tlsproxy_8c_source.html

 /*++

 /* NAME

 /*  tlsproxy 8

 /* SUMMARY

 /*  Postfix TLS proxy

 /* SYNOPSIS

 /*  \fBtlsproxy\fR [generic Postfix daemon options]

 /* DESCRIPTION

 /*  The \fBtlsproxy\fR(8) server implements a server-side TLS

 /*  proxy. It is used by \fBpostscreen\fR(8) to talk SMTP-over-TLS

 /*  with remote SMTP clients that are not whitelisted (including

 /*  clients whose whitelist status has expired),

 /*  but it should also work for non-SMTP protocols.

 /*

 /*  Although one \fBtlsproxy\fR(8) process can serve multiple

 /*  sessions at the same time, it is a good idea to allow the

 /*  number of processes to increase with load, so that the

 /*  service remains responsive.

 /* PROTOCOL EXAMPLE

 /* .ad

 /* .fi

 /*  The example below concerns \fBpostscreen\fR(8). However,

 /*  the \fBtlsproxy\fR(8) server is agnostic of the application

 /*  protocol, and the example is easily adapted to other

 /*  applications.

 /*

 /*  After receiving a valid remote SMTP client STARTTLS command,

 /*  the \fBpostscreen\fR(8) server sends the remote SMTP client

 /*  endpoint string, the requested role (server), and the

 /*  requested timeout to \fBtlsproxy\fR(8).  \fBpostscreen\fR(8)

 /*  then receives a "TLS available" indication from \fBtlsproxy\fR(8).

 /*  If the TLS service is available, \fBpostscreen\fR(8) sends

 /*  the remote SMTP client file descriptor to \fBtlsproxy\fR(8),

 /*  and sends the plaintext 220 greeting to the remote SMTP

 /*  client.  This triggers TLS negotiations between the remote

 /*  SMTP client and \fBtlsproxy\fR(8).  Upon completion of the

 /*  TLS-level handshake, \fBtlsproxy\fR(8) translates between

 /*  plaintext from/to \fBpostscreen\fR(8) and ciphertext to/from

 /*  the remote SMTP client.

 /* SECURITY

 /* .ad

 /* .fi

 /*  The \fBtlsproxy\fR(8) server is moderately security-sensitive.

 /*  It talks to untrusted clients on the network. The process

 /*  can be run chrooted at fixed low privilege.

 /* DIAGNOSTICS

 /*  Problems and transactions are logged to \fBsyslogd\fR(8).

 /* CONFIGURATION PARAMETERS

 /* .ad

 /* .fi

 /*  Changes to \fBmain.cf\fR are not picked up automatically,

 /*  as \fBtlsproxy\fR(8) processes may run for a long time

 /*  depending on mail server load.  Use the command "\fBpostfix

 /*  reload\fR" to speed up a change.

 /*

 /*  The text below provides only a parameter summary. See

 /*  \fBpostconf\fR(5) for more details including examples.

 /* STARTTLS SUPPORT CONTROLS

 /* .ad

 /* .fi

 /* .IP "\fBtlsproxy_tls_CAfile ($smtpd_tls_CAfile)\fR"

 /*  A file containing (PEM format) CA certificates of root CAs

 /*  trusted to sign either remote SMTP client certificates or intermediate

 /*  CA certificates.

 /* .IP "\fBtlsproxy_tls_CApath ($smtpd_tls_CApath)\fR"

 /*  A directory containing (PEM format) CA certificates of root CAs

 /*  trusted to sign either remote SMTP client certificates or intermediate

 /*  CA certificates.

 /* .IP "\fBtlsproxy_tls_always_issue_session_ids ($smtpd_tls_always_issue_session_ids)\fR"

 /*  Force the Postfix \fBtlsproxy\fR(8) server to issue a TLS session id,

 /*  even when TLS session caching is turned off.

 /* .IP "\fBtlsproxy_tls_ask_ccert ($smtpd_tls_ask_ccert)\fR"

 /*  Ask a remote SMTP client for a client certificate.

 /* .IP "\fBtlsproxy_tls_ccert_verifydepth ($smtpd_tls_ccert_verifydepth)\fR"

 /*  The verification depth for remote SMTP client certificates.

 /* .IP "\fBtlsproxy_tls_cert_file ($smtpd_tls_cert_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server RSA certificate in PEM

 /*  format.

 /* .IP "\fBtlsproxy_tls_ciphers ($smtpd_tls_ciphers)\fR"

 /*  The minimum TLS cipher grade that the Postfix \fBtlsproxy\fR(8) server

 /*  will use with opportunistic TLS encryption.

 /* .IP "\fBtlsproxy_tls_dcert_file ($smtpd_tls_dcert_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server DSA certificate in PEM

 /*  format.

 /* .IP "\fBtlsproxy_tls_dh1024_param_file ($smtpd_tls_dh1024_param_file)\fR"

 /*  File with DH parameters that the Postfix \fBtlsproxy\fR(8) server

 /*  should use with non-export EDH ciphers.

 /* .IP "\fBtlsproxy_tls_dh512_param_file ($smtpd_tls_dh512_param_file)\fR"

 /*  File with DH parameters that the Postfix \fBtlsproxy\fR(8) server

 /*  should use with export-grade EDH ciphers.

 /* .IP "\fBtlsproxy_tls_dkey_file ($smtpd_tls_dkey_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server DSA private key in PEM

 /*  format.

 /* .IP "\fBtlsproxy_tls_eccert_file ($smtpd_tls_eccert_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server ECDSA certificate in

 /*  PEM format.

 /* .IP "\fBtlsproxy_tls_eckey_file ($smtpd_tls_eckey_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server ECDSA private key in

 /*  PEM format.

 /* .IP "\fBtlsproxy_tls_eecdh_grade ($smtpd_tls_eecdh_grade)\fR"

 /*  The Postfix \fBtlsproxy\fR(8) server security grade for ephemeral

 /*  elliptic-curve Diffie-Hellman (EECDH) key exchange.

 /* .IP "\fBtlsproxy_tls_exclude_ciphers ($smtpd_tls_exclude_ciphers)\fR"

 /*  List of ciphers or cipher types to exclude from the \fBtlsproxy\fR(8)

 /*  server cipher list at all TLS security levels.

 /* .IP "\fBtlsproxy_tls_fingerprint_digest ($smtpd_tls_fingerprint_digest)\fR"

 /*  The message digest algorithm to construct remote SMTP

 /*  client-certificate

 /*  fingerprints.

 /* .IP "\fBtlsproxy_tls_key_file ($smtpd_tls_key_file)\fR"

 /*  File with the Postfix \fBtlsproxy\fR(8) server RSA private key in PEM

 /*  format.

 /* .IP "\fBtlsproxy_tls_loglevel ($smtpd_tls_loglevel)\fR"

 /*  Enable additional Postfix \fBtlsproxy\fR(8) server logging of TLS

 /*  activity.

 /* .IP "\fBtlsproxy_tls_mandatory_ciphers ($smtpd_tls_mandatory_ciphers)\fR"

 /*  The minimum TLS cipher grade that the Postfix \fBtlsproxy\fR(8) server

 /*  will use with mandatory TLS encryption.

 /* .IP "\fBtlsproxy_tls_mandatory_exclude_ciphers ($smtpd_tls_mandatory_exclude_ciphers)\fR"

 /*  Additional list of ciphers or cipher types to exclude from the

 /*  \fBtlsproxy\fR(8) server cipher list at mandatory TLS security levels.

 /* .IP "\fBtlsproxy_tls_mandatory_protocols ($smtpd_tls_mandatory_protocols)\fR"

 /*  The SSL/TLS protocols accepted by the Postfix \fBtlsproxy\fR(8) server

 /*  with mandatory TLS encryption.

 /* .IP "\fBtlsproxy_tls_protocols ($smtpd_tls_protocols)\fR"

 /*  List of TLS protocols that the Postfix \fBtlsproxy\fR(8) server will

 /*  exclude or include with opportunistic TLS encryption.

 /* .IP "\fBtlsproxy_tls_req_ccert ($smtpd_tls_req_ccert)\fR"

 /*  With mandatory TLS encryption, require a trusted remote SMTP

 /*  client certificate in order to allow TLS connections to proceed.

 /* .IP "\fBtlsproxy_tls_security_level ($smtpd_tls_security_level)\fR"

 /*  The SMTP TLS security level for the Postfix \fBtlsproxy\fR(8) server;

 /*  when a non-empty value is specified, this overrides the obsolete

 /*  parameters smtpd_use_tls and smtpd_enforce_tls.

 /* .PP

 /*  Available in Postfix version 2.11 and later:

 /* .IP "\fBtlsmgr_service_name (tlsmgr)\fR"

 /*  The name of the \fBtlsmgr\fR(8) service entry in master.cf.

 /* OBSOLETE STARTTLS SUPPORT CONTROLS

 /* .ad

 /* .fi

 /*  These parameters are supported for compatibility with

 /*  \fBsmtpd\fR(8) legacy parameters.

 /* .IP "\fBtlsproxy_use_tls ($smtpd_use_tls)\fR"

 /*  Opportunistic TLS: announce STARTTLS support to remote SMTP clients,

 /*  but do not require that clients use TLS encryption.

 /* .IP "\fBtlsproxy_enforce_tls ($smtpd_enforce_tls)\fR"

 /*  Mandatory TLS: announce STARTTLS support to remote SMTP clients, and

 /*  require that clients use TLS encryption.

 /* RESOURCE CONTROLS

 /* .ad

 /* .fi

 /* .IP "\fBtlsproxy_watchdog_timeout (10s)\fR"

 /*  How much time a \fBtlsproxy\fR(8) process may take to process local

 /*  or remote I/O before it is terminated by a built-in watchdog timer.

 /* MISCELLANEOUS CONTROLS

 /* .ad

 /* .fi

 /* .IP "\fBconfig_directory (see 'postconf -d' output)\fR"

 /*  The default location of the Postfix main.cf and master.cf

 /*  configuration files.

 /* .IP "\fBprocess_id (read-only)\fR"

 /*  The process ID of a Postfix command or daemon process.

 /* .IP "\fBprocess_name (read-only)\fR"

 /*  The process name of a Postfix command or daemon process.

 /* .IP "\fBsyslog_facility (mail)\fR"

 /*  The syslog facility of Postfix logging.

 /* .IP "\fBsyslog_name (see 'postconf -d' output)\fR"

 /*  A prefix that is prepended to the process name in syslog

 /*  records, so that, for example, "smtpd" becomes "prefix/smtpd".

 /* .PP

 /*  Available in Postfix 3.3 and later:

 /* .IP "\fBservice_name (read-only)\fR"

 /*  The master.cf service name of a Postfix daemon process.

 /* SEE ALSO

 /*  postscreen(8), Postfix zombie blocker

 /*  smtpd(8), Postfix SMTP server

 /*  postconf(5), configuration parameters

 /*  syslogd(5), system logging

 /* LICENSE

 /* .ad

 /* .fi

 /*  The Secure Mailer license must be distributed with this software.

 /* HISTORY

 /* .ad

 /* .fi

 /*  This service was introduced with Postfix version 2.8.

 /* AUTHOR(S)

 /*  Wietse Venema

 /*  IBM T.J. Watson Research

 /*  P.O. Box 704

 /*  Yorktown Heights, NY 10598, USA

 /*

 /*  Wietse Venema

 /*  Google, Inc.

 /*  111 8th Avenue

 /*  New York, NY 10011, USA

 /*--*/


  /*

   * System library.

   */

 #include <sys_defs.h>

 #include <errno.h>


 #ifdef STRCASECMP_IN_STRINGS_H

 #include <strings.h>

 #endif


  /*

   * Utility library.

   */

 #include <msg.h>

 #include <vstream.h>

 #include <iostuff.h>

 #include <nbbio.h>

 #include <mymalloc.h>


  /*

   * Global library.

   */

 #include <mail_proto.h>

 #include <mail_params.h>

 #include <mail_conf.h>

 #include <mail_version.h>


  /*

   * Master library.

   */

 #include <mail_server.h>


  /*

   * TLS library.

   */

 #ifdef USE_TLS

 #define TLS_INTERNAL            /* XXX */

 #include <tls.h>

 #include <tls_proxy.h>


  /*

   * Application-specific.

   */

 #include <tlsproxy.h>


  /*

   * Tunable parameters. We define our clones of the smtpd(8) parameters to

   * avoid any confusion about which parameters are used by this program.

   */

 int     var_smtpd_tls_ccert_vd;

 char   *var_smtpd_tls_loglevel;

 bool    var_smtpd_use_tls;

 bool    var_smtpd_enforce_tls;

 bool    var_smtpd_tls_ask_ccert;

 bool    var_smtpd_tls_req_ccert;

 bool    var_smtpd_tls_set_sessid;

 char   *var_smtpd_relay_ccerts;

 char   *var_smtpd_tls_cert_file;

 char   *var_smtpd_tls_key_file;

 char   *var_smtpd_tls_dcert_file;

 char   *var_smtpd_tls_dkey_file;

 char   *var_smtpd_tls_eccert_file;

 char   *var_smtpd_tls_eckey_file;

 char   *var_smtpd_tls_CAfile;

 char   *var_smtpd_tls_CApath;

 char   *var_smtpd_tls_ciph;

 char   *var_smtpd_tls_mand_ciph;

 char   *var_smtpd_tls_excl_ciph;

 char   *var_smtpd_tls_mand_excl;

 char   *var_smtpd_tls_proto;

 char   *var_smtpd_tls_mand_proto;

 char   *var_smtpd_tls_dh512_param_file;

 char   *var_smtpd_tls_dh1024_param_file;

 char   *var_smtpd_tls_eecdh;

 char   *var_smtpd_tls_fpt_dgst;

 char   *var_smtpd_tls_level;


 int     var_tlsp_tls_ccert_vd;

 char   *var_tlsp_tls_loglevel;

 bool    var_tlsp_use_tls;

 bool    var_tlsp_enforce_tls;

 bool    var_tlsp_tls_ask_ccert;

 bool    var_tlsp_tls_req_ccert;

 bool    var_tlsp_tls_set_sessid;

 char   *var_tlsp_tls_cert_file;

 char   *var_tlsp_tls_key_file;

 char   *var_tlsp_tls_dcert_file;

 char   *var_tlsp_tls_dkey_file;

 char   *var_tlsp_tls_eccert_file;

 char   *var_tlsp_tls_eckey_file;

 char   *var_tlsp_tls_CAfile;

 char   *var_tlsp_tls_CApath;

 char   *var_tlsp_tls_ciph;

 char   *var_tlsp_tls_mand_ciph;

 char   *var_tlsp_tls_excl_ciph;

 char   *var_tlsp_tls_mand_excl;

 char   *var_tlsp_tls_proto;

 char   *var_tlsp_tls_mand_proto;

 char   *var_tlsp_tls_dh512_param_file;

 char   *var_tlsp_tls_dh1024_param_file;

 char   *var_tlsp_tls_eecdh;

 char   *var_tlsp_tls_fpt_dgst;

 char   *var_tlsp_tls_level;


 int     var_tlsp_watchdog;


  /*

   * TLS per-process status.

   */

 static TLS_APPL_STATE *tlsp_server_ctx;

 static int ask_client_cert;


  /*

   * SLMs.

   */

 #define STR(x)  vstring_str(x)


  /*

   * This code looks simpler than expected. That is the result of a great deal

   * of effort, mainly in design and analysis.

   *

   * By design, postscreen(8) is an event-driven server that must scale up to a

   * large number of clients. This means that postscreen(8) must avoid doing

   * CPU-intensive operations such as those in OpenSSL.

   *

   * tlsproxy(8) runs the OpenSSL code on behalf of postscreen(8), translating

   * plaintext SMTP messages from postscreen(8) into SMTP-over-TLS messages to

   * the remote SMTP client, and vice versa. As long as postscreen(8) does not

   * receive email messages, the cost of doing TLS operations will be modest.

   *

   * Like postscreen(8), one tlsproxy(8) process services multiple remote SMTP

   * clients. Unlike postscreen(8), there can be more than one tlsproxy(8)

   * process, although their number is meant to be much smaller than the

   * number of remote SMTP clients that talk TLS.

   *

   * As with postscreen(8), all I/O must be event-driven: encrypted traffic

   * between tlsproxy(8) and remote SMTP clients, and plaintext traffic

   * between tlsproxy(8) and postscreen(8). Event-driven plaintext I/O is

   * straightforward enough that it could be abstracted away with the nbbio(3)

   * module.

   *

   * The event-driven TLS I/O implementation is founded on on-line OpenSSL

   * documentation, supplemented by statements from OpenSSL developers on

   * public mailing lists. After some field experience with this code, we may

   * be able to factor it out as a library module, like nbbio(3), that can

   * become part of the TLS library.

   */


 static void tlsp_ciphertext_event(int, void *);


 #define TLSP_INIT_TIMEOUT   100


 /* tlsp_drain - delayed exit after "postfix reload" */


 static void tlsp_drain(char *unused_service, char **unused_argv)

 {

     int     count;


     /*

      * After "postfix reload", complete work-in-progress in the background,

      * instead of dropping already-accepted connections on the floor.

      *

      * All error retry counts shall be limited. Instead of blocking here, we

      * could retry failed fork() operations in the event call-back routines,

      * but we don't need perfection. The host system is severely overloaded

      * and service levels are already way down.

      */

     for (count = 0; /* see below */ ; count++) {

     if (count >= 5) {

         msg_fatal("fork: %m");

     } else if (event_server_drain() != 0) {

         msg_warn("fork: %m");

         sleep(1);

         continue;

     } else {

         return;

     }

     }

 }


 /* tlsp_eval_tls_error - translate TLS "error" result into action */


 static int tlsp_eval_tls_error(TLSP_STATE *state, int err)

 {

     int     ciphertext_fd = state->ciphertext_fd;


     /*

      * The ciphertext file descriptor is in non-blocking mode, meaning that

      * each SSL_accept/connect/read/write/shutdown request may return an

      * "error" indication that it needs to read or write more ciphertext. The

      * purpose of this routine is to translate those "error" indications into

      * the appropriate read/write/timeout event requests.

      */

     switch (err) {


     /*

      * No error from SSL_read and SSL_write means that the plaintext

      * output buffer is full and that the plaintext input buffer is

      * empty. Stop read/write events on the ciphertext stream. Keep the

      * timer alive as a safety mechanism for the case that the plaintext

      * pseudothreads get stuck.

      */

     case SSL_ERROR_NONE:

     if (state->ssl_last_err != SSL_ERROR_NONE) {

         event_disable_readwrite(ciphertext_fd);

         event_request_timer(tlsp_ciphertext_event, (void *) state,

                 state->timeout);

         state->ssl_last_err = SSL_ERROR_NONE;

     }

     return (0);


     /*

      * The TLS engine wants to write to the network. Turn on

      * write/timeout events on the ciphertext stream.

      */

     case SSL_ERROR_WANT_WRITE:

     if (state->ssl_last_err == SSL_ERROR_WANT_READ)

         event_disable_readwrite(ciphertext_fd);

     if (state->ssl_last_err != SSL_ERROR_WANT_WRITE) {

         event_enable_write(ciphertext_fd, tlsp_ciphertext_event,

                    (void *) state);

         state->ssl_last_err = SSL_ERROR_WANT_WRITE;

     }

     event_request_timer(tlsp_ciphertext_event, (void *) state,

                 state->timeout);

     return (0);


     /*

      * The TLS engine wants to read from the network. Turn on

      * read/timeout events on the ciphertext stream.

      */

     case SSL_ERROR_WANT_READ:

     if (state->ssl_last_err == SSL_ERROR_WANT_WRITE)

         event_disable_readwrite(ciphertext_fd);

     if (state->ssl_last_err != SSL_ERROR_WANT_READ) {

         event_enable_read(ciphertext_fd, tlsp_ciphertext_event,

                   (void *) state);

         state->ssl_last_err = SSL_ERROR_WANT_READ;

     }

     event_request_timer(tlsp_ciphertext_event, (void *) state,

                 state->timeout);

     return (0);


     /*

      * Some error. Self-destruct. This automagically cleans up all

      * pending read/write and timeout event requests, making state a

      * dangling pointer.

      */

     case SSL_ERROR_SSL:

     tls_print_errors();

     /* FALLTHROUGH */

     default:

     tlsp_state_free(state);

     return (-1);

     }

 }


 /* tlsp_strategy - decide what to read or write next. */


 static void tlsp_strategy(TLSP_STATE *state)

 {

     TLS_SESS_STATE *tls_context = state->tls_context;

     NBBIO  *plaintext_buf;

     int     ssl_stat;

     int     ssl_read_err;

     int     ssl_write_err;

     int     handshake_err;


     /*

      * Be sure to complete the TLS handshake before enabling plain-text I/O.

      * In case of an unrecoverable error, this automagically cleans up all

      * pending read/write and timeout event requests.

      */

     if (state->flags & TLSP_FLAG_DO_HANDSHAKE) {

     ssl_stat = SSL_accept(tls_context->con);

     if (ssl_stat != 1) {

         handshake_err = SSL_get_error(tls_context->con, ssl_stat);

         tlsp_eval_tls_error(state, handshake_err);

         /* At this point, state could be a dangling pointer. */

         return;

     }

     if ((state->tls_context = tls_server_post_accept(tls_context)) == 0) {

         tlsp_state_free(state);

         return;

     }

     if ((state->req_flags & TLS_PROXY_FLAG_SEND_CONTEXT) != 0

         && (attr_print(state->plaintext_stream, ATTR_FLAG_NONE,

                SEND_ATTR_FUNC(tls_proxy_context_print,

                       (void *) state->tls_context),

                ATTR_TYPE_END) != 0

         || vstream_fflush(state->plaintext_stream) != 0)) {

         msg_warn("cannot send TLS context: %m");

         tlsp_state_free(state);

         return;

     }

     state->flags &= ~TLSP_FLAG_DO_HANDSHAKE;

     }


     /*

      * Shutdown and self-destruct after NBBIO error. This automagically

      * cleans up all pending read/write and timeout event requests. Before

      * shutting down TLS, we stop all plain-text I/O events but keep the

      * NBBIO error flags.

      */

     plaintext_buf = state->plaintext_buf;

     if (NBBIO_ERROR_FLAGS(plaintext_buf)) {

     if (NBBIO_ACTIVE_FLAGS(plaintext_buf))

         nbbio_disable_readwrite(state->plaintext_buf);

     ssl_stat = SSL_shutdown(tls_context->con);

     /* XXX Wait for return value 1 if sessions are to be reused? */

     if (ssl_stat < 0) {

         handshake_err = SSL_get_error(tls_context->con, ssl_stat);

         tlsp_eval_tls_error(state, handshake_err);

         /* At this point, state could be a dangling pointer. */

         return;

     }

     tlsp_state_free(state);

     return;

     }


     /*

      * Try to move data from the plaintext input buffer to the TLS engine.

      *

      * XXX We're supposed to repeat the exact same SSL_write() call arguments

      * after an SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE result. Rumor has

      * it that this is because each SSL_write() call reads from the buffer

      * incrementally, and returns > 0 only after the final byte is processed.

      * Rumor also has it that setting SSL_MODE_ENABLE_PARTIAL_WRITE and

      * SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER voids this requirement, and that

      * repeating the request with an increased request size is OK.

      * Unfortunately all this is not or poorly documented, and one has to

      * rely on statements from OpenSSL developers in public mailing archives.

      */

     ssl_write_err = SSL_ERROR_NONE;

     while (NBBIO_READ_PEND(plaintext_buf) > 0) {

     ssl_stat = SSL_write(tls_context->con, NBBIO_READ_BUF(plaintext_buf),

                  NBBIO_READ_PEND(plaintext_buf));

     ssl_write_err = SSL_get_error(tls_context->con, ssl_stat);

     if (ssl_write_err != SSL_ERROR_NONE)

         break;

     /* Allow the plaintext pseudothread to read more data. */

     NBBIO_READ_PEND(plaintext_buf) -= ssl_stat;

     if (NBBIO_READ_PEND(plaintext_buf) > 0)

         memmove(NBBIO_READ_BUF(plaintext_buf),

             NBBIO_READ_BUF(plaintext_buf) + ssl_stat,

             NBBIO_READ_PEND(plaintext_buf));

     }


     /*

      * Try to move data from the TLS engine to the plaintext output buffer.

      * Note: data may arrive as a side effect of calling SSL_write(),

      * therefore we call SSL_read() after calling SSL_write().

      *

      * XXX We're supposed to repeat the exact same SSL_read() call arguments

      * after an SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE result. This

      * supposedly means that our plaintext writer must not memmove() the

      * plaintext output buffer until after the SSL_read() call succeeds. For

      * now I'll ignore this, because 1) SSL_read() is documented to return

      * the bytes available, instead of returning > 0 only after the entire

      * buffer is processed like SSL_write() does; and 2) there is no "read"

      * equivalent of the SSL_R_BAD_WRITE_RETRY, SSL_MODE_ENABLE_PARTIAL_WRITE

      * or SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER features.

      */

     ssl_read_err = SSL_ERROR_NONE;

     while (NBBIO_WRITE_PEND(state->plaintext_buf) < NBBIO_BUFSIZE(plaintext_buf)) {

     ssl_stat = SSL_read(tls_context->con,

                 NBBIO_WRITE_BUF(plaintext_buf)

                 + NBBIO_WRITE_PEND(state->plaintext_buf),

                 NBBIO_BUFSIZE(plaintext_buf)

                 - NBBIO_WRITE_PEND(state->plaintext_buf));

     ssl_read_err = SSL_get_error(tls_context->con, ssl_stat);

     if (ssl_read_err != SSL_ERROR_NONE)

         break;

     NBBIO_WRITE_PEND(plaintext_buf) += ssl_stat;

     }


     /*

      * Try to enable/disable ciphertext read/write events. If SSL_write() was

      * satisfied, see if SSL_read() wants to do some work. In case of an

      * unrecoverable error, this automagically destroys the session state

      * after cleaning up all pending read/write and timeout event requests.

      */

     if (tlsp_eval_tls_error(state, ssl_write_err != SSL_ERROR_NONE ?

                 ssl_write_err : ssl_read_err) < 0)

     return;


     /*

      * Try to enable/disable plaintext read/write events. Basically, if we

      * have nothing to write to the postscreen(8) server, see if there is

      * something to read. If the write buffer is empty and the read buffer is

      * full, suspend plaintext I/O until conditions change (but keep the

      * timer active, as a safety mechanism in case ciphertext I/O gets

      * stuck).

      *

      * XXX In theory, if the client keeps writing fast enough then we would

      * never read from postscreen(8), and cause postscreen(8) to block. In

      * practice, postscreen(8) limits the number of client commands, and thus

      * postscreen(8)'s output will fit in a kernel buffer. This may not be

      * true in other scenarios where the tlsproxy(8) server could be used.

      */

     if (NBBIO_WRITE_PEND(plaintext_buf) > 0) {

     if (NBBIO_ACTIVE_FLAGS(plaintext_buf) & NBBIO_FLAG_READ)

         nbbio_disable_readwrite(plaintext_buf);

     if ((NBBIO_ACTIVE_FLAGS(plaintext_buf) & NBBIO_FLAG_WRITE) == 0)

         nbbio_enable_write(plaintext_buf, state->timeout);

     } else if (NBBIO_READ_PEND(plaintext_buf) < NBBIO_BUFSIZE(plaintext_buf)) {

     if (NBBIO_ACTIVE_FLAGS(plaintext_buf) & NBBIO_FLAG_WRITE)

         nbbio_disable_readwrite(plaintext_buf);

     if ((NBBIO_ACTIVE_FLAGS(plaintext_buf) & NBBIO_FLAG_READ) == 0)

         nbbio_enable_read(plaintext_buf, state->timeout);

     } else {

     if (NBBIO_ACTIVE_FLAGS(plaintext_buf))

         nbbio_slumber(plaintext_buf, state->timeout);

     }

 }


 /* tlsp_plaintext_event - plaintext was read/written */


 static void tlsp_plaintext_event(int event, void *context)

 {

     TLSP_STATE *state = (TLSP_STATE *) context;


     /*

      * Safety alert: the plaintext pseudothreads have "slumbered" for too

      * long (see code above). This means that the ciphertext pseudothreads

      * are stuck.

      */

     if ((NBBIO_ERROR_FLAGS(state->plaintext_buf) & NBBIO_FLAG_TIMEOUT) != 0

     && NBBIO_ACTIVE_FLAGS(state->plaintext_buf) == 0)

     msg_warn("deadlock on ciphertext stream for %s", state->remote_endpt);


     /*

      * This is easy, because the NBBIO layer has already done the event

      * decoding and plaintext I/O for us. All we need to do is decide if we

      * want to read or write more plaintext.

      */

     tlsp_strategy(state);

 }


 /* tlsp_ciphertext_event - ciphertext is ready to read/write */


 static void tlsp_ciphertext_event(int event, void *context)

 {

     TLSP_STATE *state = (TLSP_STATE *) context;


     /*

      * Without a TLS quivalent of the NBBIO layer, we must decode the events

      * ourselves and do the ciphertext I/O. Then, we can decide if we want to

      * read or write more ciphertext.

      */

     if (event == EVENT_READ || event == EVENT_WRITE) {

     tlsp_strategy(state);

     } else {

     if (event == EVENT_TIME && state->ssl_last_err == SSL_ERROR_NONE)

         msg_warn("deadlock on plaintext stream for %s",

              state->remote_endpt);

     else

         msg_warn("ciphertext read/write %s for %s",

              event == EVENT_TIME ? "timeout" : "error",

              state->remote_endpt);

     tlsp_state_free(state);

     }

 }


 /* tlsp_start_tls - turn on TLS or force disconnect */


 static int tlsp_start_tls(TLSP_STATE *state)

 {

     TLS_SERVER_START_PROPS props;

     static char *cipher_grade;

     static VSTRING *cipher_exclusions;


     /*

      * The code in this routine is pasted literally from smtpd(8). I am not

      * going to sanitize this because doing so surely will break things in

      * unexpected ways.

      */


     /*

      * Perform the before-handshake portion of the per-session initialization.

      * Pass a null VSTREAM to indicate that this program, will do the

      * ciphertext I/O, not libtls.

      *

      * The cipher grade and exclusions don't change between sessions. Compute

      * just once and cache.

      */

 #define ADD_EXCLUDE(vstr, str) \

     do { \

     if (*(str)) \

         vstring_sprintf_append((vstr), "%s%s", \

                    VSTRING_LEN(vstr) ? " " : "", (str)); \

     } while (0)


     if (cipher_grade == 0) {

     cipher_grade =

         var_tlsp_enforce_tls ? var_tlsp_tls_mand_ciph : var_tlsp_tls_ciph;

     cipher_exclusions = vstring_alloc(10);

     ADD_EXCLUDE(cipher_exclusions, var_tlsp_tls_excl_ciph);

     if (var_tlsp_enforce_tls)

         ADD_EXCLUDE(cipher_exclusions, var_tlsp_tls_mand_excl);

     if (ask_client_cert)

         ADD_EXCLUDE(cipher_exclusions, "aNULL");

     }

     state->tls_context =

     TLS_SERVER_START(&props,

              ctx = tlsp_server_ctx,

              stream = (VSTREAM *) 0,/* unused */

              fd = state->ciphertext_fd,

              timeout = 0,       /* unused */

              requirecert = (var_tlsp_tls_req_ccert

                     && var_tlsp_enforce_tls),

              serverid = state->server_id,

              namaddr = state->remote_endpt,

              cipher_grade = cipher_grade,

              cipher_exclusions = STR(cipher_exclusions),

              mdalg = var_tlsp_tls_fpt_dgst);


     if (state->tls_context == 0) {

     tlsp_state_free(state);

     return (-1);

     }


     /*

      * XXX Do we care about TLS session rate limits? Good postscreen(8)

      * clients will occasionally require the tlsproxy to renew their

      * whitelist status, but bad clients hammering the server can suck up

      * lots of CPU cycles. Per-client concurrency limits in postscreen(8)

      * will divert only naive security "researchers".

      *

      * XXX Do we care about certificate verification results? Not as long as

      * postscreen(8) doesn't actually receive email.

      */

     return (0);

 }


 /* tlsp_get_fd_event - receive final postscreen(8) hand-off information */


 static void tlsp_get_fd_event(int event, void *context)

 {

     const char *myname = "tlsp_get_fd_event";

     TLSP_STATE *state = (TLSP_STATE *) context;

     int     plaintext_fd = vstream_fileno(state->plaintext_stream);


     /*

      * At this point we still manually manage plaintext read/write/timeout

      * events. Disable I/O and timer events. Don't assume that the first

      * plaintext request will be a read.

      */

     event_disable_readwrite(plaintext_fd);

     if (event != EVENT_TIME)

     event_cancel_timer(tlsp_get_fd_event, (void *) state);

     else

     errno = ETIMEDOUT;


     /*

      * Initialize plaintext-related session state.  Once we have this behind

      * us, the TLSP_STATE destructor will automagically clean up requests for

      * read/write/timeout events, which makes error recovery easier.

      *

      * Register the plaintext event handler for timer cleanup in the TLSP_STATE

      * destructor. Insert the NBBIO event-driven I/O layer between the

      * postscreen(8) server and the TLS engine.

      */

     if (event != EVENT_READ

     || (state->ciphertext_fd = LOCAL_RECV_FD(plaintext_fd)) < 0) {

     msg_warn("%s: receive SMTP client file descriptor: %m", myname);

     tlsp_state_free(state);

     return;

     }

     non_blocking(state->ciphertext_fd, NON_BLOCKING);

     state->ciphertext_timer = tlsp_ciphertext_event;

     state->plaintext_buf = nbbio_create(plaintext_fd,

                     VSTREAM_BUFSIZE, "postscreen",

                     tlsp_plaintext_event,

                     (void *) state);


     /*

      * Perform the TLS layer before-handshake initialization. We perform the

      * remainder after the TLS handshake completes.

      */

     if (tlsp_start_tls(state) < 0)

     return;


     /*

      * Trigger the initial proxy server I/Os.

      */

     tlsp_strategy(state);

 }


 /* tlsp_get_request_event - receive initial postscreen(8) hand-off info */


 static void tlsp_get_request_event(int event, void *context)

 {

     const char *myname = "tlsp_get_request_event";

     TLSP_STATE *state = (TLSP_STATE *) context;

     VSTREAM *plaintext_stream = state->plaintext_stream;

     int     plaintext_fd = vstream_fileno(plaintext_stream);

     static VSTRING *remote_endpt;

     static VSTRING *server_id;

     int     req_flags;

     int     timeout;

     int     ready;


     /*

      * One-time initialization.

      */

     if (remote_endpt == 0) {

     remote_endpt = vstring_alloc(10);

     server_id = vstring_alloc(10);

     }


     /*

      * At this point we still manually manage plaintext read/write/timeout

      * events. Turn off timer events. Below we disable read events on error,

      * and redefine read events on success.

      */

     if (event != EVENT_TIME)

     event_cancel_timer(tlsp_get_request_event, (void *) state);

     else

     errno = ETIMEDOUT;


     /*

      * We must send some data, after receiving the request attributes and

      * before receiving the remote file descriptor. We can't assume

      * UNIX-domain socket semantics here.

      */

     if (event != EVENT_READ

     || attr_scan(plaintext_stream, ATTR_FLAG_STRICT,

              RECV_ATTR_STR(MAIL_ATTR_REMOTE_ENDPT, remote_endpt),

              RECV_ATTR_INT(MAIL_ATTR_FLAGS, &req_flags),

              RECV_ATTR_INT(MAIL_ATTR_TIMEOUT, &timeout),

              RECV_ATTR_STR(MAIL_ATTR_SERVER_ID, server_id),

              ATTR_TYPE_END) != 4) {

     msg_warn("%s: receive request attributes: %m", myname);

     event_disable_readwrite(plaintext_fd);

     tlsp_state_free(state);

     return;

     }


     /*

      * If the requested TLS engine is unavailable, hang up after making sure

      * that the plaintext peer has received our "sorry" indication.

      */

     ready = ((req_flags & TLS_PROXY_FLAG_ROLE_SERVER) != 0

          && tlsp_server_ctx != 0);

     if (attr_print(plaintext_stream, ATTR_FLAG_NONE,

            SEND_ATTR_INT(MAIL_ATTR_STATUS, ready),

            ATTR_TYPE_END) != 0

     || vstream_fflush(plaintext_stream) != 0

     || ready == 0) {

     read_wait(plaintext_fd, TLSP_INIT_TIMEOUT); /* XXX */

     event_disable_readwrite(plaintext_fd);

     tlsp_state_free(state);

     return;

     }


     /*

      * XXX We use the same fixed timeout throughout the entire session for

      * both plaintext and ciphertext communication. This timeout is just a

      * safety feature; the real timeout will be enforced by our plaintext

      * peer.

      */

     else {

     state->remote_endpt = mystrdup(STR(remote_endpt));

     state->server_id = mystrdup(STR(server_id));

     msg_info("CONNECT %s %s",

          (req_flags & TLS_PROXY_FLAG_ROLE_SERVER) ? "from" :

          (req_flags & TLS_PROXY_FLAG_ROLE_CLIENT) ? "to" :

          "(bogus_direction)", state->remote_endpt);

     state->req_flags = req_flags;

     state->timeout = timeout + 10;      /* XXX */

     event_enable_read(plaintext_fd, tlsp_get_fd_event, (void *) state);

     event_request_timer(tlsp_get_fd_event, (void *) state,

                 TLSP_INIT_TIMEOUT);

     return;

     }

 }


 /* tlsp_service - handle new client connection */


 static void tlsp_service(VSTREAM *plaintext_stream,

                      char *service,

                      char **argv)

 {

     TLSP_STATE *state;

     int     plaintext_fd = vstream_fileno(plaintext_stream);


     /*

      * Sanity check. This service takes no command-line arguments.

      */

     if (argv[0])

     msg_fatal("unexpected command-line argument: %s", argv[0]);


     /*

      * This program handles multiple connections, so it must not block. We

      * use event-driven code for all operations that introduce latency.

      * Except that attribute lists are sent/received synchronously, once the

      * socket is found to be ready for transmission.

      */

     non_blocking(plaintext_fd, NON_BLOCKING);

     vstream_control(plaintext_stream,

             CA_VSTREAM_CTL_PATH("plaintext"),

             CA_VSTREAM_CTL_TIMEOUT(5),

             CA_VSTREAM_CTL_END);


     /*

      * Receive postscreen's remote SMTP client address/port and socket.

      */

     state = tlsp_state_create(service, plaintext_stream);

     event_enable_read(plaintext_fd, tlsp_get_request_event, (void *) state);

     event_request_timer(tlsp_get_request_event, (void *) state,

             TLSP_INIT_TIMEOUT);

 }


 /* pre_jail_init - pre-jail initialization */


 static void pre_jail_init(char *unused_name, char **unused_argv)

 {

     TLS_SERVER_INIT_PROPS props;

     const char *cert_file;

     int     have_server_cert;

     int     no_server_cert_ok;

     int     require_server_cert;


     /*

      * The code in this routine is pasted literally from smtpd(8). I am not

      * going to sanitize this because doing so surely will break things in

      * unexpected ways.

      */

     if (*var_tlsp_tls_level) {

     switch (tls_level_lookup(var_tlsp_tls_level)) {

     default:

         msg_fatal("Invalid TLS level \"%s\"", var_tlsp_tls_level);

         /* NOTREACHED */

         break;

     case TLS_LEV_SECURE:

     case TLS_LEV_VERIFY:

     case TLS_LEV_FPRINT:

         msg_warn("%s: unsupported TLS level \"%s\", using \"encrypt\"",

              VAR_TLSP_TLS_LEVEL, var_tlsp_tls_level);

         /* FALLTHROUGH */

     case TLS_LEV_ENCRYPT:

         var_tlsp_enforce_tls = var_tlsp_use_tls = 1;

         break;

     case TLS_LEV_MAY:

         var_tlsp_enforce_tls = 0;

         var_tlsp_use_tls = 1;

         break;

     case TLS_LEV_NONE:

         var_tlsp_enforce_tls = var_tlsp_use_tls = 0;

         break;

     }

     }

     var_tlsp_use_tls = var_tlsp_use_tls || var_tlsp_enforce_tls;

     if (!var_tlsp_use_tls) {

     msg_warn("TLS service is requested, but disabled with %s or %s",

          VAR_TLSP_TLS_LEVEL, VAR_TLSP_USE_TLS);

     return;

     }


     /*

      * Load TLS keys before dropping privileges.

      *

      * Can't use anonymous ciphers if we want client certificates. Must use

      * anonymous ciphers if we have no certificates.

      */

     ask_client_cert = require_server_cert =

     (var_tlsp_tls_ask_ccert

      || (var_tlsp_enforce_tls && var_tlsp_tls_req_ccert));

     if (strcasecmp(var_tlsp_tls_cert_file, "none") == 0) {

     no_server_cert_ok = 1;

     cert_file = "";

     } else {

     no_server_cert_ok = 0;

     cert_file = var_tlsp_tls_cert_file;

     }

     have_server_cert =

     (*cert_file || *var_tlsp_tls_dcert_file || *var_tlsp_tls_eccert_file);


     /* Some TLS configuration errors are not show stoppers. */

     if (!have_server_cert && require_server_cert)

     msg_warn("Need a server cert to request client certs");

     if (!var_tlsp_enforce_tls && var_tlsp_tls_req_ccert)

     msg_warn("Can't require client certs unless TLS is required");

     /* After a show-stopper error, log a warning. */

     if (have_server_cert || (no_server_cert_ok && !require_server_cert))


     /*

      * Large parameter lists are error-prone, so we emulate a language

      * feature that C does not have natively: named parameter lists.

      */

     tlsp_server_ctx =

         TLS_SERVER_INIT(&props,

                 log_param = VAR_TLSP_TLS_LOGLEVEL,

                 log_level = var_tlsp_tls_loglevel,

                 verifydepth = var_tlsp_tls_ccert_vd,

                 cache_type = TLS_MGR_SCACHE_SMTPD,

                 set_sessid = var_tlsp_tls_set_sessid,

                 cert_file = cert_file,

                 key_file = var_tlsp_tls_key_file,

                 dcert_file = var_tlsp_tls_dcert_file,

                 dkey_file = var_tlsp_tls_dkey_file,

                 eccert_file = var_tlsp_tls_eccert_file,

                 eckey_file = var_tlsp_tls_eckey_file,

                 CAfile = var_tlsp_tls_CAfile,

                 CApath = var_tlsp_tls_CApath,

                 dh1024_param_file

                 = var_tlsp_tls_dh1024_param_file,

                 dh512_param_file

                 = var_tlsp_tls_dh512_param_file,

                 eecdh_grade = var_tlsp_tls_eecdh,

                 protocols = var_tlsp_enforce_tls ?

                 var_tlsp_tls_mand_proto :

                 var_tlsp_tls_proto,

                 ask_ccert = ask_client_cert,

                 mdalg = var_tlsp_tls_fpt_dgst);

     else

     msg_warn("No server certs available. TLS can't be enabled");


     /*

      * To maintain sanity, allow partial SSL_write() operations, and allow

      * SSL_write() buffer pointers to change after a WANT_READ or WANT_WRITE

      * result. This is based on OpenSSL developers talking on a mailing list,

      * but is not supported by documentation. If this code stops working then

      * no-one can be held responsible.

      */

     if (tlsp_server_ctx)

     SSL_CTX_set_mode(tlsp_server_ctx->ssl_ctx,

              SSL_MODE_ENABLE_PARTIAL_WRITE

              | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);

 }


 /* post_jail_init - post-jail initialization */


 static void post_jail_init(char *unused_name, char **unused_argv)

 {

      /* void */ ;

 }


 MAIL_VERSION_STAMP_DECLARE;


 /* main - the main program */


 int     main(int argc, char **argv)

 {

     static const CONFIG_INT_TABLE int_table[] = {

     VAR_SMTPD_TLS_CCERT_VD, DEF_SMTPD_TLS_CCERT_VD, &var_smtpd_tls_ccert_vd, 0, 0,

     0,

     };

     static const CONFIG_NINT_TABLE nint_table[] = {

     VAR_TLSP_TLS_CCERT_VD, DEF_TLSP_TLS_CCERT_VD, &var_tlsp_tls_ccert_vd, 0, 0,

     0,

     };

     static const CONFIG_TIME_TABLE time_table[] = {

     VAR_TLSP_WATCHDOG, DEF_TLSP_WATCHDOG, &var_tlsp_watchdog, 10, 0,

     0,

     };

     static const CONFIG_BOOL_TABLE bool_table[] = {

     VAR_SMTPD_USE_TLS, DEF_SMTPD_USE_TLS, &var_smtpd_use_tls,

     VAR_SMTPD_ENFORCE_TLS, DEF_SMTPD_ENFORCE_TLS, &var_smtpd_enforce_tls,

     VAR_SMTPD_TLS_ACERT, DEF_SMTPD_TLS_ACERT, &var_smtpd_tls_ask_ccert,

     VAR_SMTPD_TLS_RCERT, DEF_SMTPD_TLS_RCERT, &var_smtpd_tls_req_ccert,

     VAR_SMTPD_TLS_SET_SESSID, DEF_SMTPD_TLS_SET_SESSID, &var_smtpd_tls_set_sessid,

     0,

     };

     static const CONFIG_NBOOL_TABLE nbool_table[] = {

     VAR_TLSP_USE_TLS, DEF_TLSP_USE_TLS, &var_tlsp_use_tls,

     VAR_TLSP_ENFORCE_TLS, DEF_TLSP_ENFORCE_TLS, &var_tlsp_enforce_tls,

     VAR_TLSP_TLS_ACERT, DEF_TLSP_TLS_ACERT, &var_tlsp_tls_ask_ccert,

     VAR_TLSP_TLS_RCERT, DEF_TLSP_TLS_RCERT, &var_tlsp_tls_req_ccert,

     VAR_TLSP_TLS_SET_SESSID, DEF_TLSP_TLS_SET_SESSID, &var_tlsp_tls_set_sessid,

     0,

     };

     static const CONFIG_STR_TABLE str_table[] = {

     VAR_SMTPD_TLS_CERT_FILE, DEF_SMTPD_TLS_CERT_FILE, &var_smtpd_tls_cert_file, 0, 0,

     VAR_SMTPD_TLS_KEY_FILE, DEF_SMTPD_TLS_KEY_FILE, &var_smtpd_tls_key_file, 0, 0,

     VAR_SMTPD_TLS_DCERT_FILE, DEF_SMTPD_TLS_DCERT_FILE, &var_smtpd_tls_dcert_file, 0, 0,

     VAR_SMTPD_TLS_DKEY_FILE, DEF_SMTPD_TLS_DKEY_FILE, &var_smtpd_tls_dkey_file, 0, 0,

     VAR_SMTPD_TLS_ECCERT_FILE, DEF_SMTPD_TLS_ECCERT_FILE, &var_smtpd_tls_eccert_file, 0, 0,

     VAR_SMTPD_TLS_ECKEY_FILE, DEF_SMTPD_TLS_ECKEY_FILE, &var_smtpd_tls_eckey_file, 0, 0,

     VAR_SMTPD_TLS_CA_FILE, DEF_SMTPD_TLS_CA_FILE, &var_smtpd_tls_CAfile, 0, 0,

     VAR_SMTPD_TLS_CA_PATH, DEF_SMTPD_TLS_CA_PATH, &var_smtpd_tls_CApath, 0, 0,

     VAR_SMTPD_TLS_CIPH, DEF_SMTPD_TLS_CIPH, &var_smtpd_tls_ciph, 1, 0,

     VAR_SMTPD_TLS_MAND_CIPH, DEF_SMTPD_TLS_MAND_CIPH, &var_smtpd_tls_mand_ciph, 1, 0,

     VAR_SMTPD_TLS_EXCL_CIPH, DEF_SMTPD_TLS_EXCL_CIPH, &var_smtpd_tls_excl_ciph, 0, 0,

     VAR_SMTPD_TLS_MAND_EXCL, DEF_SMTPD_TLS_MAND_EXCL, &var_smtpd_tls_mand_excl, 0, 0,

     VAR_SMTPD_TLS_PROTO, DEF_SMTPD_TLS_PROTO, &var_smtpd_tls_proto, 0, 0,

     VAR_SMTPD_TLS_MAND_PROTO, DEF_SMTPD_TLS_MAND_PROTO, &var_smtpd_tls_mand_proto, 0, 0,

     VAR_SMTPD_TLS_512_FILE, DEF_SMTPD_TLS_512_FILE, &var_smtpd_tls_dh512_param_file, 0, 0,

     VAR_SMTPD_TLS_1024_FILE, DEF_SMTPD_TLS_1024_FILE, &var_smtpd_tls_dh1024_param_file, 0, 0,

     VAR_SMTPD_TLS_EECDH, DEF_SMTPD_TLS_EECDH, &var_smtpd_tls_eecdh, 1, 0,

     VAR_SMTPD_TLS_FPT_DGST, DEF_SMTPD_TLS_FPT_DGST, &var_smtpd_tls_fpt_dgst, 1, 0,

     VAR_SMTPD_TLS_LOGLEVEL, DEF_SMTPD_TLS_LOGLEVEL, &var_smtpd_tls_loglevel, 0, 0,

     VAR_SMTPD_TLS_LEVEL, DEF_SMTPD_TLS_LEVEL, &var_smtpd_tls_level, 0, 0,

     VAR_TLSP_TLS_CERT_FILE, DEF_TLSP_TLS_CERT_FILE, &var_tlsp_tls_cert_file, 0, 0,

     VAR_TLSP_TLS_KEY_FILE, DEF_TLSP_TLS_KEY_FILE, &var_tlsp_tls_key_file, 0, 0,

     VAR_TLSP_TLS_DCERT_FILE, DEF_TLSP_TLS_DCERT_FILE, &var_tlsp_tls_dcert_file, 0, 0,

     VAR_TLSP_TLS_DKEY_FILE, DEF_TLSP_TLS_DKEY_FILE, &var_tlsp_tls_dkey_file, 0, 0,

     VAR_TLSP_TLS_ECCERT_FILE, DEF_TLSP_TLS_ECCERT_FILE, &var_tlsp_tls_eccert_file, 0, 0,

     VAR_TLSP_TLS_ECKEY_FILE, DEF_TLSP_TLS_ECKEY_FILE, &var_tlsp_tls_eckey_file, 0, 0,

     VAR_TLSP_TLS_CA_FILE, DEF_TLSP_TLS_CA_FILE, &var_tlsp_tls_CAfile, 0, 0,

     VAR_TLSP_TLS_CA_PATH, DEF_TLSP_TLS_CA_PATH, &var_tlsp_tls_CApath, 0, 0,

     VAR_TLSP_TLS_CIPH, DEF_TLSP_TLS_CIPH, &var_tlsp_tls_ciph, 1, 0,

     VAR_TLSP_TLS_MAND_CIPH, DEF_TLSP_TLS_MAND_CIPH, &var_tlsp_tls_mand_ciph, 1, 0,

     VAR_TLSP_TLS_EXCL_CIPH, DEF_TLSP_TLS_EXCL_CIPH, &var_tlsp_tls_excl_ciph, 0, 0,

     VAR_TLSP_TLS_MAND_EXCL, DEF_TLSP_TLS_MAND_EXCL, &var_tlsp_tls_mand_excl, 0, 0,

     VAR_TLSP_TLS_PROTO, DEF_TLSP_TLS_PROTO, &var_tlsp_tls_proto, 0, 0,

     VAR_TLSP_TLS_MAND_PROTO, DEF_TLSP_TLS_MAND_PROTO, &var_tlsp_tls_mand_proto, 0, 0,

     VAR_TLSP_TLS_512_FILE, DEF_TLSP_TLS_512_FILE, &var_tlsp_tls_dh512_param_file, 0, 0,

     VAR_TLSP_TLS_1024_FILE, DEF_TLSP_TLS_1024_FILE, &var_tlsp_tls_dh1024_param_file, 0, 0,

     VAR_TLSP_TLS_EECDH, DEF_TLSP_TLS_EECDH, &var_tlsp_tls_eecdh, 1, 0,

     VAR_TLSP_TLS_FPT_DGST, DEF_TLSP_TLS_FPT_DGST, &var_tlsp_tls_fpt_dgst, 1, 0,

     VAR_TLSP_TLS_LOGLEVEL, DEF_TLSP_TLS_LOGLEVEL, &var_tlsp_tls_loglevel, 0, 0,

     VAR_TLSP_TLS_LEVEL, DEF_TLSP_TLS_LEVEL, &var_tlsp_tls_level, 0, 0,

     0,

     };


     /*

      * Fingerprint executables and core dumps.

      */

     MAIL_VERSION_STAMP_ALLOCATE;


     /*

      * Pass control to the single-threaded service skeleton.

      */

     event_server_main(argc, argv, tlsp_service,

               CA_MAIL_SERVER_INT_TABLE(int_table),

               CA_MAIL_SERVER_NINT_TABLE(nint_table),

               CA_MAIL_SERVER_STR_TABLE(str_table),

               CA_MAIL_SERVER_BOOL_TABLE(bool_table),

               CA_MAIL_SERVER_NBOOL_TABLE(nbool_table),

               CA_MAIL_SERVER_TIME_TABLE(time_table),

               CA_MAIL_SERVER_PRE_INIT(pre_jail_init),

               CA_MAIL_SERVER_POST_INIT(post_jail_init),

               CA_MAIL_SERVER_SLOW_EXIT(tlsp_drain),

               CA_MAIL_SERVER_WATCHDOG(&var_tlsp_watchdog),

               0);

 }


 #else


 /* tlsp_service - respond to external trigger(s), non-TLS version */


 static void tlsp_service(VSTREAM *stream, char *unused_service,

                      char **unused_argv)

 {

     msg_info("TLS support is not compiled in -- exiting");

     event_server_disconnect(stream);

 }


 /* main - the main program */


 int     main(int argc, char **argv)

 {


     /*

      * We can't simply use msg_fatal() here, because the logging hasn't been

      * initialized. The text would disappear because stderr is redirected to

      * /dev/null.

      *

      * We invoke event_server_main() to complete program initialization

      * (including logging) and then invoke the tlsp_service() routine to log

      * the message that says why this program will not run.

      */

     event_server_main(argc, argv, tlsp_service,

               0);

 }


 #endif

DEF_SMTPD_ENFORCE_TLS
#define DEF_SMTPD_ENFORCE_TLS
Definition: mail_params.h:1276

tls.h

event_enable_read
void event_enable_read(int fd, EVENT_NOTIFY_RDWR_FN callback, void *context)
Definition: events.c:729

var_smtpd_tls_fpt_dgst
char * var_smtpd_tls_fpt_dgst

NBBIO_FLAG_WRITE
#define NBBIO_FLAG_WRITE
Definition: nbbio.h:40

mail_proto.h

VAR_TLSP_TLS_SET_SESSID
#define VAR_TLSP_TLS_SET_SESSID
Definition: mail_params.h:3913

LOCAL_RECV_FD
#define LOCAL_RECV_FD
Definition: sys_defs.h:1427

ATTR_FLAG_NONE
#define ATTR_FLAG_NONE
Definition: attr.h:98

VAR_SMTPD_TLS_MAND_PROTO
#define VAR_SMTPD_TLS_MAND_PROTO
Definition: mail_params.h:1331

CA_MAIL_SERVER_WATCHDOG
#define CA_MAIL_SERVER_WATCHDOG(v)
Definition: mail_server.h:73

DEF_TLSP_TLS_CIPH
#define DEF_TLSP_TLS_CIPH
Definition: mail_params.h:3874

VAR_TLSP_USE_TLS
#define VAR_TLSP_USE_TLS
Definition: mail_params.h:3810

VSTREAM
Definition: vstream.h:43

CA_VSTREAM_CTL_TIMEOUT
#define CA_VSTREAM_CTL_TIMEOUT(v)
Definition: vstream.h:163

MAIL_VERSION_STAMP_DECLARE
#define MAIL_VERSION_STAMP_DECLARE
Definition: mail_version.h:64

CA_MAIL_SERVER_BOOL_TABLE
#define CA_MAIL_SERVER_BOOL_TABLE(v)
Definition: mail_server.h:58

NBBIO_WRITE_BUF
#define NBBIO_WRITE_BUF(np)
Definition: nbbio.h:62

VAR_SMTPD_TLS_MAND_EXCL
#define VAR_SMTPD_TLS_MAND_EXCL
Definition: mail_params.h:1347

DEF_SMTPD_TLS_CERT_FILE
#define DEF_SMTPD_TLS_CERT_FILE
Definition: mail_params.h:1296

TLSP_STATE::req_flags
int req_flags
Definition: tlsproxy.h:27

TLS_PROXY_FLAG_SEND_CONTEXT
#define TLS_PROXY_FLAG_SEND_CONTEXT
Definition: tls_proxy.h:30

DEF_TLSP_TLS_512_FILE
#define DEF_TLSP_TLS_512_FILE
Definition: mail_params.h:3894

var_smtpd_tls_dh1024_param_file
char * var_smtpd_tls_dh1024_param_file

VAR_SMTPD_TLS_ECCERT_FILE
#define VAR_SMTPD_TLS_ECCERT_FILE
Definition: mail_params.h:1311

EVENT_WRITE
#define EVENT_WRITE
Definition: events.h:41

CONFIG_STR_TABLE
Definition: mail_conf.h:100

mystrdup
char * mystrdup(const char *str)
Definition: mymalloc.c:225

var_smtpd_tls_eccert_file
char * var_smtpd_tls_eccert_file

TLSP_STATE::flags
int flags
Definition: tlsproxy.h:26

var_smtpd_tls_key_file
char * var_smtpd_tls_key_file

var_smtpd_tls_dkey_file
char * var_smtpd_tls_dkey_file

var_tlsp_tls_eckey_file
char * var_tlsp_tls_eckey_file
Definition: mail_params.h:3855

CA_MAIL_SERVER_STR_TABLE
#define CA_MAIL_SERVER_STR_TABLE(v)
Definition: mail_server.h:57

var_smtpd_tls_proto
char * var_smtpd_tls_proto

DEF_TLSP_TLS_1024_FILE
#define DEF_TLSP_TLS_1024_FILE
Definition: mail_params.h:3898

VAR_SMTPD_TLS_EXCL_CIPH
#define VAR_SMTPD_TLS_EXCL_CIPH
Definition: mail_params.h:1343

VAR_TLSP_TLS_RCERT
#define VAR_TLSP_TLS_RCERT
Definition: mail_params.h:3822

VAR_TLSP_TLS_MAND_PROTO
#define VAR_TLSP_TLS_MAND_PROTO
Definition: mail_params.h:3869

TLSP_STATE
Definition: tlsproxy.h:25

DEF_SMTPD_TLS_CCERT_VD
#define DEF_SMTPD_TLS_CCERT_VD
Definition: mail_params.h:1292

var_smtpd_tls_ciph
char * var_smtpd_tls_ciph

VAR_TLSP_TLS_ACERT
#define VAR_TLSP_TLS_ACERT
Definition: mail_params.h:3818

var_smtpd_tls_req_ccert
bool var_smtpd_tls_req_ccert

VAR_SMTPD_TLS_CERT_FILE
#define VAR_SMTPD_TLS_CERT_FILE
Definition: mail_params.h:1295

VAR_TLSP_TLS_CA_PATH
#define VAR_TLSP_TLS_CA_PATH
Definition: mail_params.h:3861

var_tlsp_tls_cert_file
char * var_tlsp_tls_cert_file

var_tlsp_use_tls
bool var_tlsp_use_tls

DEF_SMTPD_TLS_ECCERT_FILE
#define DEF_SMTPD_TLS_ECCERT_FILE
Definition: mail_params.h:1312

DEF_SMTPD_TLS_RCERT
#define DEF_SMTPD_TLS_RCERT
Definition: mail_params.h:1288

DEF_SMTPD_TLS_LOGLEVEL
#define DEF_SMTPD_TLS_LOGLEVEL
Definition: mail_params.h:1372

iostuff.h

CA_MAIL_SERVER_SLOW_EXIT
#define CA_MAIL_SERVER_SLOW_EXIT(v)
Definition: mail_server.h:75

VAR_TLSP_TLS_DKEY_FILE
#define VAR_TLSP_TLS_DKEY_FILE
Definition: mail_params.h:3842

DEF_TLSP_TLS_DCERT_FILE
#define DEF_TLSP_TLS_DCERT_FILE
Definition: mail_params.h:3839

var_smtpd_use_tls
bool var_smtpd_use_tls
Definition: postscreen.c:458

NBBIO_READ_BUF
#define NBBIO_READ_BUF(np)
Definition: nbbio.h:59

TLS_LEV_VERIFY
#define TLS_LEV_VERIFY
Definition: tls.h:50

DEF_TLSP_TLS_CERT_FILE
#define DEF_TLSP_TLS_CERT_FILE
Definition: mail_params.h:3831

var_tlsp_tls_dh512_param_file
char * var_tlsp_tls_dh512_param_file

nbbio_slumber
void nbbio_slumber(NBBIO *np, int timeout)
Definition: nbbio.c:319

RECV_ATTR_INT
#define RECV_ATTR_INT(name, val)
Definition: attr.h:71

ATTR_TYPE_END
#define ATTR_TYPE_END
Definition: attr.h:39

DEF_SMTPD_USE_TLS
#define DEF_SMTPD_USE_TLS
Definition: mail_params.h:1272

DEF_TLSP_TLS_FPT_DGST
#define DEF_TLSP_TLS_FPT_DGST
Definition: mail_params.h:3890

NBBIO_FLAG_TIMEOUT
#define NBBIO_FLAG_TIMEOUT
Definition: nbbio.h:43

VAR_TLSP_TLS_512_FILE
#define VAR_TLSP_TLS_512_FILE
Definition: mail_params.h:3893

DEF_SMTPD_TLS_LEVEL
#define DEF_SMTPD_TLS_LEVEL
Definition: mail_params.h:1268

DEF_SMTPD_TLS_MAND_CIPH
#define DEF_SMTPD_TLS_MAND_CIPH
Definition: mail_params.h:1340

TLS_LEV_NONE
#define TLS_LEV_NONE
Definition: tls.h:43

DEF_TLSP_TLS_MAND_PROTO
#define DEF_TLSP_TLS_MAND_PROTO
Definition: mail_params.h:3870

event_enable_write
void event_enable_write(int fd, EVENT_NOTIFY_RDWR_FN callback, void *context)
Definition: events.c:784

var_tlsp_tls_mand_ciph
char * var_tlsp_tls_mand_ciph

VAR_TLSP_TLS_DCERT_FILE
#define VAR_TLSP_TLS_DCERT_FILE
Definition: mail_params.h:3838

var_smtpd_tls_CApath
char * var_smtpd_tls_CApath

DEF_TLSP_TLS_CA_PATH
#define DEF_TLSP_TLS_CA_PATH
Definition: mail_params.h:3862

mail_server.h

var_tlsp_tls_ciph
char * var_tlsp_tls_ciph

var_smtpd_tls_eecdh
char * var_smtpd_tls_eecdh

VAR_SMTPD_TLS_CA_PATH
#define VAR_SMTPD_TLS_CA_PATH
Definition: mail_params.h:1323

VAR_SMTPD_TLS_512_FILE
#define VAR_SMTPD_TLS_512_FILE
Definition: mail_params.h:1355

nbbio_enable_read
void nbbio_enable_read(NBBIO *np, int timeout)
Definition: nbbio.c:256

var_smtpd_tls_ask_ccert
bool var_smtpd_tls_ask_ccert

var_tlsp_tls_excl_ciph
char * var_tlsp_tls_excl_ciph

VAR_TLSP_TLS_MAND_CIPH
#define VAR_TLSP_TLS_MAND_CIPH
Definition: mail_params.h:3877

VAR_SMTPD_TLS_RCERT
#define VAR_SMTPD_TLS_RCERT
Definition: mail_params.h:1287

DEF_SMTPD_TLS_CIPH
#define DEF_SMTPD_TLS_CIPH
Definition: mail_params.h:1336

mail_version.h

DEF_SMTPD_TLS_PROTO
#define DEF_SMTPD_TLS_PROTO
Definition: mail_params.h:1328

var_tlsp_tls_loglevel
char * var_tlsp_tls_loglevel

var_tlsp_tls_CApath
char * var_tlsp_tls_CApath

nbbio.h

TLSP_STATE::plaintext_stream
VSTREAM * plaintext_stream
Definition: tlsproxy.h:29

TLS_LEV_SECURE
#define TLS_LEV_SECURE
Definition: tls.h:51

VAR_TLSP_TLS_CERT_FILE
#define VAR_TLSP_TLS_CERT_FILE
Definition: mail_params.h:3830

DEF_SMTPD_TLS_ACERT
#define DEF_SMTPD_TLS_ACERT
Definition: mail_params.h:1284

VAR_SMTPD_TLS_CCERT_VD
#define VAR_SMTPD_TLS_CCERT_VD
Definition: mail_params.h:1291

var_tlsp_tls_ccert_vd
int var_tlsp_tls_ccert_vd

var_smtpd_tls_mand_ciph
char * var_smtpd_tls_mand_ciph

event_server_drain
int event_server_drain(void)
Definition: event_server.c:305

CA_MAIL_SERVER_POST_INIT
#define CA_MAIL_SERVER_POST_INIT(v)
Definition: mail_server.h:65

CA_MAIL_SERVER_INT_TABLE
#define CA_MAIL_SERVER_INT_TABLE(v)
Definition: mail_server.h:56

DEF_TLSP_TLS_KEY_FILE
#define DEF_TLSP_TLS_KEY_FILE
Definition: mail_params.h:3835

tls_proxy.h

VAR_TLSP_TLS_FPT_DGST
#define VAR_TLSP_TLS_FPT_DGST
Definition: mail_params.h:3889

VAR_SMTPD_TLS_1024_FILE
#define VAR_SMTPD_TLS_1024_FILE
Definition: mail_params.h:1359

var_tlsp_tls_dh1024_param_file
char * var_tlsp_tls_dh1024_param_file

attr_print
#define attr_print
Definition: attr.h:109

DEF_TLSP_TLS_ECKEY_FILE
#define DEF_TLSP_TLS_ECKEY_FILE
Definition: mail_params.h:3854

VAR_SMTPD_TLS_PROTO
#define VAR_SMTPD_TLS_PROTO
Definition: mail_params.h:1327

VAR_SMTPD_TLS_LOGLEVEL
#define VAR_SMTPD_TLS_LOGLEVEL
Definition: mail_params.h:1371

MAIL_ATTR_TIMEOUT
#define MAIL_ATTR_TIMEOUT
Definition: mail_proto.h:286

VAR_SMTPD_TLS_CA_FILE
#define VAR_SMTPD_TLS_CA_FILE
Definition: mail_params.h:1319

var_smtpd_tls_mand_proto
char * var_smtpd_tls_mand_proto

var_smtpd_tls_ccert_vd
int var_smtpd_tls_ccert_vd

DEF_TLSP_TLS_RCERT
#define DEF_TLSP_TLS_RCERT
Definition: mail_params.h:3823

VAR_SMTPD_USE_TLS
#define VAR_SMTPD_USE_TLS
Definition: mail_params.h:1271

DEF_SMTPD_TLS_EXCL_CIPH
#define DEF_SMTPD_TLS_EXCL_CIPH
Definition: mail_params.h:1344

tlsp_state_create
TLSP_STATE * tlsp_state_create(const char *, VSTREAM *)

DEF_SMTPD_TLS_MAND_PROTO
#define DEF_SMTPD_TLS_MAND_PROTO
Definition: mail_params.h:1332

VAR_SMTPD_TLS_FPT_DGST
#define VAR_SMTPD_TLS_FPT_DGST
Definition: mail_params.h:1351

DEF_TLSP_TLS_EECDH
#define DEF_TLSP_TLS_EECDH
Definition: mail_params.h:3902

VAR_SMTPD_TLS_EECDH
#define VAR_SMTPD_TLS_EECDH
Definition: mail_params.h:1363

var_tlsp_tls_req_ccert
bool var_tlsp_tls_req_ccert

TLSP_STATE::remote_endpt
char * remote_endpt
Definition: tlsproxy.h:34

var_tlsp_tls_key_file
char * var_tlsp_tls_key_file

DEF_TLSP_USE_TLS
#define DEF_TLSP_USE_TLS
Definition: mail_params.h:3811

var_smtpd_tls_set_sessid
bool var_smtpd_tls_set_sessid

TLS_PROXY_FLAG_ROLE_CLIENT
#define TLS_PROXY_FLAG_ROLE_CLIENT
Definition: tls_proxy.h:29

CONFIG_TIME_TABLE
Definition: mail_conf.h:138

var_smtpd_enforce_tls
bool var_smtpd_enforce_tls
Definition: postscreen.c:459

var_smtpd_tls_dh512_param_file
char * var_smtpd_tls_dh512_param_file

var_tlsp_tls_mand_proto
char * var_tlsp_tls_mand_proto

STR
#define STR(x)
Definition: anvil.c:518

NBBIO_ACTIVE_FLAGS
#define NBBIO_ACTIVE_FLAGS(np)
Definition: nbbio.h:64

msg.h

read_wait
#define read_wait(fd, timeout)
Definition: iostuff.h:39

TLSP_STATE::timeout
int timeout
Definition: tlsproxy.h:33

msg_warn
void msg_warn(const char *fmt,...)
Definition: msg.c:215

VAR_SMTPD_TLS_KEY_FILE
#define VAR_SMTPD_TLS_KEY_FILE
Definition: mail_params.h:1299

vstring_alloc
VSTRING * vstring_alloc(ssize_t len)
Definition: vstring.c:353

DEF_SMTPD_TLS_CA_FILE
#define DEF_SMTPD_TLS_CA_FILE
Definition: mail_params.h:1320

VAR_TLSP_TLS_PROTO
#define VAR_TLSP_TLS_PROTO
Definition: mail_params.h:3865

var_tlsp_tls_set_sessid
bool var_tlsp_tls_set_sessid

VSTRING
Definition: vstring.h:29

CA_MAIL_SERVER_NBOOL_TABLE
#define CA_MAIL_SERVER_NBOOL_TABLE(v)
Definition: mail_server.h:62

DEF_SMTPD_TLS_512_FILE
#define DEF_SMTPD_TLS_512_FILE
Definition: mail_params.h:1356

MAIL_VERSION_STAMP_ALLOCATE
#define MAIL_VERSION_STAMP_ALLOCATE
Definition: mail_version.h:67

event_server_main
NORETURN event_server_main(int argc, char **argv, MULTI_SERVER_FN service,...)
Definition: event_server.c:534

VAR_TLSP_TLS_LOGLEVEL
#define VAR_TLSP_TLS_LOGLEVEL
Definition: mail_params.h:3905

VAR_SMTPD_TLS_DKEY_FILE
#define VAR_SMTPD_TLS_DKEY_FILE
Definition: mail_params.h:1307

TLS_LEV_ENCRYPT
#define TLS_LEV_ENCRYPT
Definition: tls.h:45

MAIL_ATTR_REMOTE_ENDPT
#define MAIL_ATTR_REMOTE_ENDPT
Definition: mail_proto.h:282

var_smtpd_tls_eckey_file
char * var_smtpd_tls_eckey_file

DEF_TLSP_TLS_LEVEL
#define DEF_TLSP_TLS_LEVEL
Definition: mail_params.h:3807

EVENT_READ
#define EVENT_READ
Definition: events.h:40

main
int main(int argc, char **argv)
Definition: tlsproxy.c:1152

CA_MAIL_SERVER_TIME_TABLE
#define CA_MAIL_SERVER_TIME_TABLE(v)
Definition: mail_server.h:59

MAIL_ATTR_STATUS
#define MAIL_ATTR_STATUS
Definition: mail_proto.h:126

event_server_disconnect
void event_server_disconnect(VSTREAM *stream)
Definition: event_server.c:335

SEND_ATTR_INT
#define SEND_ATTR_INT(name, val)
Definition: attr.h:63

var_tlsp_tls_level
char * var_tlsp_tls_level

sys_defs.h

var_smtpd_tls_level
char * var_smtpd_tls_level
Definition: postscreen.c:457

var_tlsp_watchdog
int var_tlsp_watchdog

VAR_TLSP_TLS_CCERT_VD
#define VAR_TLSP_TLS_CCERT_VD
Definition: mail_params.h:3826

msg_fatal
NORETURN msg_fatal(const char *fmt,...)
Definition: msg.c:249

CONFIG_NINT_TABLE
Definition: mail_conf.h:146

DEF_TLSP_TLS_ECCERT_FILE
#define DEF_TLSP_TLS_ECCERT_FILE
Definition: mail_params.h:3847

MAIL_ATTR_SERVER_ID
#define MAIL_ATTR_SERVER_ID
Definition: mail_proto.h:296

mail_conf.h

var_smtpd_relay_ccerts
char * var_smtpd_relay_ccerts

VAR_TLSP_TLS_LEVEL
#define VAR_TLSP_TLS_LEVEL
Definition: mail_params.h:3806

TLS_LEV_FPRINT
#define TLS_LEV_FPRINT
Definition: tls.h:46

DEF_SMTPD_TLS_KEY_FILE
#define DEF_SMTPD_TLS_KEY_FILE
Definition: mail_params.h:1300

NBBIO
Definition: nbbio.h:24

var_smtpd_tls_loglevel
char * var_smtpd_tls_loglevel

vstream_fflush
int vstream_fflush(VSTREAM *stream)
Definition: vstream.c:1257

VAR_TLSP_TLS_MAND_EXCL
#define VAR_TLSP_TLS_MAND_EXCL
Definition: mail_params.h:3885

DEF_TLSP_TLS_CCERT_VD
#define DEF_TLSP_TLS_CCERT_VD
Definition: mail_params.h:3827

DEF_TLSP_TLS_MAND_CIPH
#define DEF_TLSP_TLS_MAND_CIPH
Definition: mail_params.h:3878

DEF_SMTPD_TLS_ECKEY_FILE
#define DEF_SMTPD_TLS_ECKEY_FILE
Definition: mail_params.h:1316

nbbio_enable_write
void nbbio_enable_write(NBBIO *np, int timeout)
Definition: nbbio.c:283

var_tlsp_tls_proto
char * var_tlsp_tls_proto

VSTREAM_BUFSIZE
#define VSTREAM_BUFSIZE
Definition: vstream.h:92

tls_level_lookup
int tls_level_lookup(const char *)
Definition: tls_level.c:85

CONFIG_BOOL_TABLE
Definition: mail_conf.h:132

NBBIO_READ_PEND
#define NBBIO_READ_PEND(np)
Definition: nbbio.h:58

CA_MAIL_SERVER_NINT_TABLE
#define CA_MAIL_SERVER_NINT_TABLE(v)
Definition: mail_server.h:61

var_smtpd_tls_excl_ciph
char * var_smtpd_tls_excl_ciph

CONFIG_NBOOL_TABLE
Definition: mail_conf.h:154

tlsproxy.h

var_tlsp_tls_eccert_file
char * var_tlsp_tls_eccert_file

EVENT_TIME
#define EVENT_TIME
Definition: events.h:43

NON_BLOCKING
#define NON_BLOCKING
Definition: iostuff.h:49

var_smtpd_tls_mand_excl
char * var_smtpd_tls_mand_excl

TLS_PROXY_FLAG_ROLE_SERVER
#define TLS_PROXY_FLAG_ROLE_SERVER
Definition: tls_proxy.h:28

DEF_TLSP_TLS_ACERT
#define DEF_TLSP_TLS_ACERT
Definition: mail_params.h:3819

SEND_ATTR_FUNC
#define SEND_ATTR_FUNC(func, val)
Definition: attr.h:69

VAR_SMTPD_TLS_LEVEL
#define VAR_SMTPD_TLS_LEVEL
Definition: mail_params.h:1267

var_tlsp_tls_fpt_dgst
char * var_tlsp_tls_fpt_dgst

NBBIO_ERROR_FLAGS
#define NBBIO_ERROR_FLAGS(np)
Definition: nbbio.h:65

VAR_SMTPD_TLS_CIPH
#define VAR_SMTPD_TLS_CIPH
Definition: mail_params.h:1335

var_tlsp_enforce_tls
bool var_tlsp_enforce_tls

DEF_TLSP_TLS_LOGLEVEL
#define DEF_TLSP_TLS_LOGLEVEL
Definition: mail_params.h:3906

strcasecmp
int strcasecmp(const char *s1, const char *s2)
Definition: strcasecmp.c:41

VAR_SMTPD_TLS_ACERT
#define VAR_SMTPD_TLS_ACERT
Definition: mail_params.h:1283

DEF_TLSP_ENFORCE_TLS
#define DEF_TLSP_ENFORCE_TLS
Definition: mail_params.h:3815

vstream.h

var_tlsp_tls_dkey_file
char * var_tlsp_tls_dkey_file

non_blocking
int non_blocking(int, int)
Definition: non_blocking.c:55

DEF_TLSP_WATCHDOG
#define DEF_TLSP_WATCHDOG
Definition: mail_params.h:3803

NBBIO_BUFSIZE
#define NBBIO_BUFSIZE(np)
Definition: nbbio.h:56

TLSP_STATE::tls_context
TLS_SESS_STATE * tls_context
Definition: tlsproxy.h:36

VAR_TLSP_TLS_KEY_FILE
#define VAR_TLSP_TLS_KEY_FILE
Definition: mail_params.h:3834

VAR_TLSP_TLS_CA_FILE
#define VAR_TLSP_TLS_CA_FILE
Definition: mail_params.h:3857

VAR_TLSP_ENFORCE_TLS
#define VAR_TLSP_ENFORCE_TLS
Definition: mail_params.h:3814

event_request_timer
time_t event_request_timer(EVENT_NOTIFY_TIME_FN callback, void *context, int delay)
Definition: events.c:894

DEF_TLSP_TLS_CA_FILE
#define DEF_TLSP_TLS_CA_FILE
Definition: mail_params.h:3858

nbbio_create
NBBIO * nbbio_create(int fd, ssize_t bufsize, const char *label, NBBIO_ACTION action, void *context)
Definition: nbbio.c:328

var_smtpd_tls_cert_file
char * var_smtpd_tls_cert_file

mail_params.h

VAR_TLSP_TLS_CIPH
#define VAR_TLSP_TLS_CIPH
Definition: mail_params.h:3873

DEF_TLSP_TLS_DKEY_FILE
#define DEF_TLSP_TLS_DKEY_FILE
Definition: mail_params.h:3843

TLSP_STATE::ssl_last_err
int ssl_last_err
Definition: tlsproxy.h:37

vstream_fileno
#define vstream_fileno(vp)
Definition: vstream.h:115

VAR_TLSP_WATCHDOG
#define VAR_TLSP_WATCHDOG
Definition: mail_params.h:3802

TLS_LEV_MAY
#define TLS_LEV_MAY
Definition: tls.h:44

DEF_SMTPD_TLS_1024_FILE
#define DEF_SMTPD_TLS_1024_FILE
Definition: mail_params.h:1360

VAR_TLSP_TLS_ECCERT_FILE
#define VAR_TLSP_TLS_ECCERT_FILE
Definition: mail_params.h:3846

CA_VSTREAM_CTL_END
#define CA_VSTREAM_CTL_END
Definition: vstream.h:155

DEF_SMTPD_TLS_DKEY_FILE
#define DEF_SMTPD_TLS_DKEY_FILE
Definition: mail_params.h:1308

CA_VSTREAM_CTL_PATH
#define CA_VSTREAM_CTL_PATH(v)
Definition: vstream.h:158

DEF_SMTPD_TLS_SET_SESSID
#define DEF_SMTPD_TLS_SET_SESSID
Definition: mail_params.h:1389

tlsp_state_free
void tlsp_state_free(TLSP_STATE *)

TLSP_FLAG_DO_HANDSHAKE
#define TLSP_FLAG_DO_HANDSHAKE
Definition: tlsproxy.h:40

VAR_SMTPD_TLS_DCERT_FILE
#define VAR_SMTPD_TLS_DCERT_FILE
Definition: mail_params.h:1303

TLSP_STATE::ciphertext_timer
EVENT_NOTIFY_FN ciphertext_timer
Definition: tlsproxy.h:32

NBBIO_FLAG_READ
#define NBBIO_FLAG_READ
Definition: nbbio.h:39

var_tlsp_tls_mand_excl
char * var_tlsp_tls_mand_excl

VAR_SMTPD_TLS_MAND_CIPH
#define VAR_SMTPD_TLS_MAND_CIPH
Definition: mail_params.h:1339

TLSP_STATE::plaintext_buf
NBBIO * plaintext_buf
Definition: tlsproxy.h:30

VAR_SMTPD_TLS_SET_SESSID
#define VAR_SMTPD_TLS_SET_SESSID
Definition: mail_params.h:1388

var_tlsp_tls_dcert_file
char * var_tlsp_tls_dcert_file

vstream_control
void vstream_control(VSTREAM *stream, int name,...)
Definition: vstream.c:1372

event_disable_readwrite
void event_disable_readwrite(int fd)
Definition: events.c:839

var_tlsp_tls_ask_ccert
bool var_tlsp_tls_ask_ccert

DEF_TLSP_TLS_PROTO
#define DEF_TLSP_TLS_PROTO
Definition: mail_params.h:3866

var_smtpd_tls_CAfile
char * var_smtpd_tls_CAfile

DEF_TLSP_TLS_EXCL_CIPH
#define DEF_TLSP_TLS_EXCL_CIPH
Definition: mail_params.h:3882

NBBIO_WRITE_PEND
#define NBBIO_WRITE_PEND(np)
Definition: nbbio.h:61

attr_scan
#define attr_scan
Definition: attr.h:111

VAR_SMTPD_ENFORCE_TLS
#define VAR_SMTPD_ENFORCE_TLS
Definition: mail_params.h:1275

DEF_SMTPD_TLS_CA_PATH
#define DEF_SMTPD_TLS_CA_PATH
Definition: mail_params.h:1324

DEF_TLSP_TLS_MAND_EXCL
#define DEF_TLSP_TLS_MAND_EXCL
Definition: mail_params.h:3886

event_cancel_timer
int event_cancel_timer(EVENT_NOTIFY_TIME_FN callback, void *context)
Definition: events.c:965

DEF_SMTPD_TLS_FPT_DGST
#define DEF_SMTPD_TLS_FPT_DGST
Definition: mail_params.h:1352

nbbio_disable_readwrite
void nbbio_disable_readwrite(NBBIO *np)
Definition: nbbio.c:310

VAR_TLSP_TLS_1024_FILE
#define VAR_TLSP_TLS_1024_FILE
Definition: mail_params.h:3897

MAIL_ATTR_FLAGS
#define MAIL_ATTR_FLAGS
Definition: mail_proto.h:128

DEF_SMTPD_TLS_MAND_EXCL
#define DEF_SMTPD_TLS_MAND_EXCL
Definition: mail_params.h:1348

mymalloc.h

VAR_TLSP_TLS_ECKEY_FILE
#define VAR_TLSP_TLS_ECKEY_FILE
Definition: mail_params.h:3850

TLSP_STATE::server_id
char * server_id
Definition: tlsproxy.h:35

DEF_TLSP_TLS_SET_SESSID
#define DEF_TLSP_TLS_SET_SESSID
Definition: mail_params.h:3914

VAR_SMTPD_TLS_ECKEY_FILE
#define VAR_SMTPD_TLS_ECKEY_FILE
Definition: mail_params.h:1315

VAR_TLSP_TLS_EECDH
#define VAR_TLSP_TLS_EECDH
Definition: mail_params.h:3901

DEF_SMTPD_TLS_EECDH
#define DEF_SMTPD_TLS_EECDH
Definition: mail_params.h:1367

CONFIG_INT_TABLE
Definition: mail_conf.h:116

VAR_TLSP_TLS_EXCL_CIPH
#define VAR_TLSP_TLS_EXCL_CIPH
Definition: mail_params.h:3881

TLSP_STATE::ciphertext_fd
int ciphertext_fd
Definition: tlsproxy.h:31

var_tlsp_tls_eecdh
char * var_tlsp_tls_eecdh

var_tlsp_tls_CAfile
char * var_tlsp_tls_CAfile

CA_MAIL_SERVER_PRE_INIT
#define CA_MAIL_SERVER_PRE_INIT(v)
Definition: mail_server.h:64

RECV_ATTR_STR
#define RECV_ATTR_STR(name, val)
Definition: attr.h:72

var_smtpd_tls_dcert_file
char * var_smtpd_tls_dcert_file

ATTR_FLAG_STRICT
#define ATTR_FLAG_STRICT
Definition: attr.h:103

DEF_SMTPD_TLS_DCERT_FILE
#define DEF_SMTPD_TLS_DCERT_FILE
Definition: mail_params.h:1304

msg_info
void msg_info(const char *fmt,...)
Definition: msg.c:199