Mercurial > hg > nginx-mail
annotate src/mail/ngx_mail_proxy_module.c @ 470:2c989ee54dbd PATCH_NGINX_MAIL_0_7
Mail: fix code for successful authentication.
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Mon, 12 Jan 2009 18:17:03 +0300 |
parents | d67e93e97b4a |
children | 96428109ec3b |
rev | line source |
---|---|
290 | 1 |
2 /* | |
3 * Copyright (C) Igor Sysoev | |
4 */ | |
5 | |
6 | |
7 #include <ngx_config.h> | |
8 #include <ngx_core.h> | |
9 #include <ngx_event.h> | |
10 #include <ngx_event_connect.h> | |
11 #include <ngx_mail.h> | |
12 | |
13 | |
14 typedef struct { | |
15 ngx_flag_t enable; | |
16 ngx_flag_t pass_error_message; | |
17 ngx_flag_t xclient; | |
18 size_t buffer_size; | |
19 ngx_msec_t timeout; | |
20 } ngx_mail_proxy_conf_t; | |
21 | |
22 | |
23 static void ngx_mail_proxy_block_read(ngx_event_t *rev); | |
24 static void ngx_mail_proxy_pop3_handler(ngx_event_t *rev); | |
25 static void ngx_mail_proxy_imap_handler(ngx_event_t *rev); | |
26 static void ngx_mail_proxy_smtp_handler(ngx_event_t *rev); | |
27 static void ngx_mail_proxy_dummy_handler(ngx_event_t *ev); | |
28 static ngx_int_t ngx_mail_proxy_read_response(ngx_mail_session_t *s, | |
29 ngx_uint_t state); | |
30 static void ngx_mail_proxy_handler(ngx_event_t *ev); | |
31 static void ngx_mail_proxy_upstream_error(ngx_mail_session_t *s); | |
32 static void ngx_mail_proxy_internal_server_error(ngx_mail_session_t *s); | |
33 static void ngx_mail_proxy_close_session(ngx_mail_session_t *s); | |
34 static void *ngx_mail_proxy_create_conf(ngx_conf_t *cf); | |
35 static char *ngx_mail_proxy_merge_conf(ngx_conf_t *cf, void *parent, | |
36 void *child); | |
37 | |
38 | |
39 static ngx_command_t ngx_mail_proxy_commands[] = { | |
40 | |
41 { ngx_string("proxy"), | |
42 NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG, | |
43 ngx_conf_set_flag_slot, | |
44 NGX_MAIL_SRV_CONF_OFFSET, | |
45 offsetof(ngx_mail_proxy_conf_t, enable), | |
46 NULL }, | |
47 | |
48 { ngx_string("proxy_buffer"), | |
49 NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1, | |
50 ngx_conf_set_size_slot, | |
51 NGX_MAIL_SRV_CONF_OFFSET, | |
52 offsetof(ngx_mail_proxy_conf_t, buffer_size), | |
53 NULL }, | |
54 | |
55 { ngx_string("proxy_timeout"), | |
56 NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1, | |
57 ngx_conf_set_msec_slot, | |
58 NGX_MAIL_SRV_CONF_OFFSET, | |
59 offsetof(ngx_mail_proxy_conf_t, timeout), | |
60 NULL }, | |
61 | |
62 { ngx_string("proxy_pass_error_message"), | |
63 NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1, | |
64 ngx_conf_set_flag_slot, | |
65 NGX_MAIL_SRV_CONF_OFFSET, | |
66 offsetof(ngx_mail_proxy_conf_t, pass_error_message), | |
67 NULL }, | |
68 | |
69 { ngx_string("xclient"), | |
70 NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG, | |
71 ngx_conf_set_flag_slot, | |
72 NGX_MAIL_SRV_CONF_OFFSET, | |
73 offsetof(ngx_mail_proxy_conf_t, xclient), | |
74 NULL }, | |
75 | |
76 ngx_null_command | |
77 }; | |
78 | |
79 | |
80 static ngx_mail_module_t ngx_mail_proxy_module_ctx = { | |
336 | 81 NULL, /* protocol */ |
82 | |
290 | 83 NULL, /* create main configuration */ |
84 NULL, /* init main configuration */ | |
85 | |
86 ngx_mail_proxy_create_conf, /* create server configuration */ | |
87 ngx_mail_proxy_merge_conf /* merge server configuration */ | |
88 }; | |
89 | |
90 | |
91 ngx_module_t ngx_mail_proxy_module = { | |
92 NGX_MODULE_V1, | |
93 &ngx_mail_proxy_module_ctx, /* module context */ | |
94 ngx_mail_proxy_commands, /* module directives */ | |
95 NGX_MAIL_MODULE, /* module type */ | |
96 NULL, /* init master */ | |
97 NULL, /* init module */ | |
98 NULL, /* init process */ | |
99 NULL, /* init thread */ | |
100 NULL, /* exit thread */ | |
101 NULL, /* exit process */ | |
102 NULL, /* exit master */ | |
103 NGX_MODULE_V1_PADDING | |
104 }; | |
105 | |
106 | |
470
2c989ee54dbd
Mail: fix code for successful authentication.
Maxim Dounin <mdounin@mdounin.ru>
parents:
467
diff
changeset
|
107 static u_char smtp_ok[] = "235 2.0.0 OK" CRLF; |
290 | 108 |
109 | |
110 void | |
111 ngx_mail_proxy_init(ngx_mail_session_t *s, ngx_peer_addr_t *peer) | |
112 { | |
113 int keepalive; | |
114 ngx_int_t rc; | |
115 ngx_mail_proxy_ctx_t *p; | |
116 ngx_mail_proxy_conf_t *pcf; | |
117 ngx_mail_core_srv_conf_t *cscf; | |
118 | |
119 s->connection->log->action = "connecting to upstream"; | |
120 | |
121 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
122 | |
123 if (cscf->so_keepalive) { | |
124 keepalive = 1; | |
125 | |
126 if (setsockopt(s->connection->fd, SOL_SOCKET, SO_KEEPALIVE, | |
127 (const void *) &keepalive, sizeof(int)) | |
128 == -1) | |
129 { | |
130 ngx_log_error(NGX_LOG_ALERT, s->connection->log, ngx_socket_errno, | |
131 "setsockopt(SO_KEEPALIVE) failed"); | |
132 } | |
133 } | |
134 | |
135 p = ngx_pcalloc(s->connection->pool, sizeof(ngx_mail_proxy_ctx_t)); | |
136 if (p == NULL) { | |
137 ngx_mail_session_internal_server_error(s); | |
138 return; | |
139 } | |
140 | |
141 s->proxy = p; | |
142 | |
143 p->upstream.sockaddr = peer->sockaddr; | |
144 p->upstream.socklen = peer->socklen; | |
145 p->upstream.name = &peer->name; | |
146 p->upstream.get = ngx_event_get_peer; | |
147 p->upstream.log = s->connection->log; | |
148 p->upstream.log_error = NGX_ERROR_ERR; | |
149 | |
150 rc = ngx_event_connect_peer(&p->upstream); | |
151 | |
152 if (rc == NGX_ERROR || rc == NGX_BUSY || rc == NGX_DECLINED) { | |
153 ngx_mail_proxy_internal_server_error(s); | |
154 return; | |
155 } | |
156 | |
157 ngx_add_timer(p->upstream.connection->read, cscf->timeout); | |
158 | |
159 p->upstream.connection->data = s; | |
160 p->upstream.connection->pool = s->connection->pool; | |
161 | |
162 s->connection->read->handler = ngx_mail_proxy_block_read; | |
163 p->upstream.connection->write->handler = ngx_mail_proxy_dummy_handler; | |
164 | |
165 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
166 | |
167 s->proxy->buffer = ngx_create_temp_buf(s->connection->pool, | |
168 pcf->buffer_size); | |
169 if (s->proxy->buffer == NULL) { | |
170 ngx_mail_proxy_internal_server_error(s); | |
171 return; | |
172 } | |
173 | |
372 | 174 s->out.len = 0; |
175 | |
290 | 176 switch (s->protocol) { |
177 | |
178 case NGX_MAIL_POP3_PROTOCOL: | |
179 p->upstream.connection->read->handler = ngx_mail_proxy_pop3_handler; | |
180 s->mail_state = ngx_pop3_start; | |
181 break; | |
182 | |
183 case NGX_MAIL_IMAP_PROTOCOL: | |
184 p->upstream.connection->read->handler = ngx_mail_proxy_imap_handler; | |
185 s->mail_state = ngx_imap_start; | |
186 break; | |
187 | |
188 default: /* NGX_MAIL_SMTP_PROTOCOL */ | |
189 p->upstream.connection->read->handler = ngx_mail_proxy_smtp_handler; | |
190 s->mail_state = ngx_smtp_start; | |
191 break; | |
192 } | |
193 } | |
194 | |
195 | |
196 static void | |
197 ngx_mail_proxy_block_read(ngx_event_t *rev) | |
198 { | |
199 ngx_connection_t *c; | |
200 ngx_mail_session_t *s; | |
201 | |
202 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, "mail proxy block read"); | |
203 | |
459 | 204 if (ngx_handle_read_event(rev, 0) != NGX_OK) { |
290 | 205 c = rev->data; |
206 s = c->data; | |
207 | |
208 ngx_mail_proxy_close_session(s); | |
209 } | |
210 } | |
211 | |
212 | |
213 static void | |
214 ngx_mail_proxy_pop3_handler(ngx_event_t *rev) | |
215 { | |
216 u_char *p; | |
217 ngx_int_t rc; | |
218 ngx_str_t line; | |
219 ngx_connection_t *c; | |
220 ngx_mail_session_t *s; | |
221 ngx_mail_proxy_conf_t *pcf; | |
222 | |
223 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
224 "mail proxy pop3 auth handler"); | |
225 | |
226 c = rev->data; | |
227 s = c->data; | |
228 | |
229 if (rev->timedout) { | |
230 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, | |
231 "upstream timed out"); | |
232 c->timedout = 1; | |
233 ngx_mail_proxy_internal_server_error(s); | |
234 return; | |
235 } | |
236 | |
237 rc = ngx_mail_proxy_read_response(s, 0); | |
238 | |
239 if (rc == NGX_AGAIN) { | |
240 return; | |
241 } | |
242 | |
243 if (rc == NGX_ERROR) { | |
244 ngx_mail_proxy_upstream_error(s); | |
245 return; | |
246 } | |
247 | |
248 switch (s->mail_state) { | |
249 | |
250 case ngx_pop3_start: | |
251 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, "mail proxy send user"); | |
252 | |
253 s->connection->log->action = "sending user name to upstream"; | |
254 | |
255 line.len = sizeof("USER ") - 1 + s->login.len + 2; | |
382 | 256 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 257 if (line.data == NULL) { |
258 ngx_mail_proxy_internal_server_error(s); | |
259 return; | |
260 } | |
261 | |
262 p = ngx_cpymem(line.data, "USER ", sizeof("USER ") - 1); | |
263 p = ngx_cpymem(p, s->login.data, s->login.len); | |
264 *p++ = CR; *p = LF; | |
265 | |
266 s->mail_state = ngx_pop3_user; | |
267 break; | |
268 | |
269 case ngx_pop3_user: | |
270 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, "mail proxy send pass"); | |
271 | |
272 s->connection->log->action = "sending password to upstream"; | |
273 | |
274 line.len = sizeof("PASS ") - 1 + s->passwd.len + 2; | |
382 | 275 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 276 if (line.data == NULL) { |
277 ngx_mail_proxy_internal_server_error(s); | |
278 return; | |
279 } | |
280 | |
281 p = ngx_cpymem(line.data, "PASS ", sizeof("PASS ") - 1); | |
282 p = ngx_cpymem(p, s->passwd.data, s->passwd.len); | |
283 *p++ = CR; *p = LF; | |
284 | |
285 s->mail_state = ngx_pop3_passwd; | |
286 break; | |
287 | |
288 case ngx_pop3_passwd: | |
289 s->connection->read->handler = ngx_mail_proxy_handler; | |
290 s->connection->write->handler = ngx_mail_proxy_handler; | |
291 rev->handler = ngx_mail_proxy_handler; | |
292 c->write->handler = ngx_mail_proxy_handler; | |
293 | |
294 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
295 ngx_add_timer(s->connection->read, pcf->timeout); | |
296 ngx_del_timer(c->read); | |
297 | |
298 c->log->action = NULL; | |
299 ngx_log_error(NGX_LOG_INFO, c->log, 0, "client logged in"); | |
300 | |
301 ngx_mail_proxy_handler(s->connection->write); | |
302 | |
303 return; | |
304 | |
305 default: | |
306 #if (NGX_SUPPRESS_WARN) | |
307 line.len = 0; | |
308 line.data = NULL; | |
309 #endif | |
310 break; | |
311 } | |
312 | |
313 if (c->send(c, line.data, line.len) < (ssize_t) line.len) { | |
314 /* | |
315 * we treat the incomplete sending as NGX_ERROR | |
316 * because it is very strange here | |
317 */ | |
318 ngx_mail_proxy_internal_server_error(s); | |
319 return; | |
320 } | |
321 | |
322 s->proxy->buffer->pos = s->proxy->buffer->start; | |
323 s->proxy->buffer->last = s->proxy->buffer->start; | |
324 } | |
325 | |
326 | |
327 static void | |
328 ngx_mail_proxy_imap_handler(ngx_event_t *rev) | |
329 { | |
330 u_char *p; | |
331 ngx_int_t rc; | |
332 ngx_str_t line; | |
333 ngx_connection_t *c; | |
334 ngx_mail_session_t *s; | |
335 ngx_mail_proxy_conf_t *pcf; | |
336 | |
337 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
338 "mail proxy imap auth handler"); | |
339 | |
340 c = rev->data; | |
341 s = c->data; | |
342 | |
343 if (rev->timedout) { | |
344 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, | |
345 "upstream timed out"); | |
346 c->timedout = 1; | |
347 ngx_mail_proxy_internal_server_error(s); | |
348 return; | |
349 } | |
350 | |
351 rc = ngx_mail_proxy_read_response(s, s->mail_state); | |
352 | |
353 if (rc == NGX_AGAIN) { | |
354 return; | |
355 } | |
356 | |
357 if (rc == NGX_ERROR) { | |
358 ngx_mail_proxy_upstream_error(s); | |
359 return; | |
360 } | |
361 | |
362 switch (s->mail_state) { | |
363 | |
364 case ngx_imap_start: | |
365 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
366 "mail proxy send login"); | |
367 | |
368 s->connection->log->action = "sending LOGIN command to upstream"; | |
369 | |
370 line.len = s->tag.len + sizeof("LOGIN ") - 1 | |
371 + 1 + NGX_SIZE_T_LEN + 1 + 2; | |
382 | 372 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 373 if (line.data == NULL) { |
374 ngx_mail_proxy_internal_server_error(s); | |
375 return; | |
376 } | |
377 | |
378 line.len = ngx_sprintf(line.data, "%VLOGIN {%uz}" CRLF, | |
379 &s->tag, s->login.len) | |
380 - line.data; | |
381 | |
382 s->mail_state = ngx_imap_login; | |
383 break; | |
384 | |
385 case ngx_imap_login: | |
386 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, "mail proxy send user"); | |
387 | |
388 s->connection->log->action = "sending user name to upstream"; | |
389 | |
390 line.len = s->login.len + 1 + 1 + NGX_SIZE_T_LEN + 1 + 2; | |
382 | 391 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 392 if (line.data == NULL) { |
393 ngx_mail_proxy_internal_server_error(s); | |
394 return; | |
395 } | |
396 | |
397 line.len = ngx_sprintf(line.data, "%V {%uz}" CRLF, | |
398 &s->login, s->passwd.len) | |
399 - line.data; | |
400 | |
401 s->mail_state = ngx_imap_user; | |
402 break; | |
403 | |
404 case ngx_imap_user: | |
405 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
406 "mail proxy send passwd"); | |
407 | |
408 s->connection->log->action = "sending password to upstream"; | |
409 | |
410 line.len = s->passwd.len + 2; | |
382 | 411 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 412 if (line.data == NULL) { |
413 ngx_mail_proxy_internal_server_error(s); | |
414 return; | |
415 } | |
416 | |
417 p = ngx_cpymem(line.data, s->passwd.data, s->passwd.len); | |
418 *p++ = CR; *p = LF; | |
419 | |
420 s->mail_state = ngx_imap_passwd; | |
421 break; | |
422 | |
423 case ngx_imap_passwd: | |
424 s->connection->read->handler = ngx_mail_proxy_handler; | |
425 s->connection->write->handler = ngx_mail_proxy_handler; | |
426 rev->handler = ngx_mail_proxy_handler; | |
427 c->write->handler = ngx_mail_proxy_handler; | |
428 | |
429 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
430 ngx_add_timer(s->connection->read, pcf->timeout); | |
431 ngx_del_timer(c->read); | |
432 | |
433 c->log->action = NULL; | |
434 ngx_log_error(NGX_LOG_INFO, c->log, 0, "client logged in"); | |
435 | |
436 ngx_mail_proxy_handler(s->connection->write); | |
437 | |
438 return; | |
439 | |
440 default: | |
441 #if (NGX_SUPPRESS_WARN) | |
442 line.len = 0; | |
443 line.data = NULL; | |
444 #endif | |
445 break; | |
446 } | |
447 | |
448 if (c->send(c, line.data, line.len) < (ssize_t) line.len) { | |
449 /* | |
450 * we treat the incomplete sending as NGX_ERROR | |
451 * because it is very strange here | |
452 */ | |
453 ngx_mail_proxy_internal_server_error(s); | |
454 return; | |
455 } | |
456 | |
457 s->proxy->buffer->pos = s->proxy->buffer->start; | |
458 s->proxy->buffer->last = s->proxy->buffer->start; | |
459 } | |
460 | |
461 | |
462 static void | |
463 ngx_mail_proxy_smtp_handler(ngx_event_t *rev) | |
464 { | |
465 u_char *p; | |
466 ngx_int_t rc; | |
467 ngx_str_t line; | |
449 | 468 ngx_buf_t *b; |
290 | 469 ngx_connection_t *c; |
470 ngx_mail_session_t *s; | |
471 ngx_mail_proxy_conf_t *pcf; | |
472 ngx_mail_core_srv_conf_t *cscf; | |
473 | |
474 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
475 "mail proxy smtp auth handler"); | |
476 | |
477 c = rev->data; | |
478 s = c->data; | |
479 | |
480 if (rev->timedout) { | |
481 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, | |
482 "upstream timed out"); | |
483 c->timedout = 1; | |
484 ngx_mail_proxy_internal_server_error(s); | |
485 return; | |
486 } | |
487 | |
488 rc = ngx_mail_proxy_read_response(s, s->mail_state); | |
489 | |
490 if (rc == NGX_AGAIN) { | |
491 return; | |
492 } | |
493 | |
494 if (rc == NGX_ERROR) { | |
495 ngx_mail_proxy_upstream_error(s); | |
496 return; | |
497 } | |
498 | |
499 switch (s->mail_state) { | |
500 | |
501 case ngx_smtp_start: | |
502 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, "mail proxy send ehlo"); | |
503 | |
504 s->connection->log->action = "sending HELO/EHLO to upstream"; | |
505 | |
506 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
507 | |
508 line.len = sizeof("HELO ") - 1 + cscf->server_name.len + 2; | |
382 | 509 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 510 if (line.data == NULL) { |
511 ngx_mail_proxy_internal_server_error(s); | |
512 return; | |
513 } | |
514 | |
515 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
516 | |
517 p = ngx_cpymem(line.data, | |
518 ((s->esmtp || pcf->xclient) ? "EHLO " : "HELO "), | |
519 sizeof("HELO ") - 1); | |
520 | |
521 p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len); | |
522 *p++ = CR; *p = LF; | |
523 | |
449 | 524 if (pcf->xclient) { |
525 s->mail_state = ngx_smtp_helo_xclient; | |
526 | |
527 } else if (s->auth_method == NGX_MAIL_AUTH_NONE) { | |
528 s->mail_state = ngx_smtp_helo_from; | |
529 | |
530 } else { | |
531 s->mail_state = ngx_smtp_helo; | |
532 } | |
290 | 533 |
534 break; | |
535 | |
449 | 536 case ngx_smtp_helo_xclient: |
290 | 537 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, |
538 "mail proxy send xclient"); | |
539 | |
540 s->connection->log->action = "sending XCLIENT to upstream"; | |
541 | |
366 | 542 line.len = sizeof("XCLIENT PROTO=SMTP HELO= ADDR= LOGIN= NAME=" |
543 CRLF) - 1 | |
290 | 544 + s->esmtp + s->smtp_helo.len |
366 | 545 + s->connection->addr_text.len + s->login.len + s->host.len; |
290 | 546 |
382 | 547 line.data = ngx_pnalloc(c->pool, line.len); |
290 | 548 if (line.data == NULL) { |
549 ngx_mail_proxy_internal_server_error(s); | |
550 return; | |
551 } | |
552 | |
449 | 553 line.len = ngx_sprintf(line.data, |
554 "XCLIENT PROTO=%sSMTP%s%V ADDR=%V%s%V NAME=%V" CRLF, | |
555 (s->esmtp ? "E" : ""), | |
556 (s->smtp_helo.len ? " HELO=" : ""), &s->smtp_helo, | |
557 &s->connection->addr_text, | |
558 (s->login.len ? " LOGIN=" : ""), &s->login, &s->host) | |
559 - line.data; | |
560 | |
561 s->mail_state = (s->auth_method == NGX_MAIL_AUTH_NONE) ? | |
562 ngx_smtp_xclient_from : ngx_smtp_xclient; | |
563 | |
564 break; | |
565 | |
566 case ngx_smtp_helo_from: | |
567 case ngx_smtp_xclient_from: | |
568 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
569 "mail proxy send mail from"); | |
570 | |
571 s->connection->log->action = "sending MAIL FROM to upstream"; | |
572 | |
573 line.len = s->smtp_from.len + sizeof(CRLF) - 1; | |
574 line.data = ngx_pnalloc(c->pool, line.len); | |
575 if (line.data == NULL) { | |
576 ngx_mail_proxy_internal_server_error(s); | |
577 return; | |
290 | 578 } |
579 | |
449 | 580 p = ngx_cpymem(line.data, s->smtp_from.data, s->smtp_from.len); |
581 *p++ = CR; *p = LF; | |
582 | |
583 s->mail_state = ngx_smtp_from; | |
584 | |
290 | 585 break; |
586 | |
449 | 587 case ngx_smtp_from: |
588 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, rev->log, 0, | |
589 "mail proxy send rcpt to"); | |
590 | |
591 s->connection->log->action = "sending RCPT TO to upstream"; | |
592 | |
593 line.len = s->smtp_to.len + sizeof(CRLF) - 1; | |
594 line.data = ngx_pnalloc(c->pool, line.len); | |
595 if (line.data == NULL) { | |
596 ngx_mail_proxy_internal_server_error(s); | |
597 return; | |
598 } | |
599 | |
600 p = ngx_cpymem(line.data, s->smtp_to.data, s->smtp_to.len); | |
601 *p++ = CR; *p = LF; | |
290 | 602 |
449 | 603 s->mail_state = ngx_smtp_to; |
604 | |
605 break; | |
606 | |
607 case ngx_smtp_helo: | |
608 case ngx_smtp_xclient: | |
609 case ngx_smtp_to: | |
290 | 610 |
449 | 611 b = s->proxy->buffer; |
612 | |
613 if (s->auth_method == NGX_MAIL_AUTH_NONE) { | |
614 b->pos = b->start; | |
615 | |
616 } else { | |
617 ngx_memcpy(b->start, smtp_ok, sizeof(smtp_ok) - 1); | |
618 b->last = b->start + sizeof(smtp_ok) - 1; | |
619 } | |
290 | 620 |
621 s->connection->read->handler = ngx_mail_proxy_handler; | |
622 s->connection->write->handler = ngx_mail_proxy_handler; | |
623 rev->handler = ngx_mail_proxy_handler; | |
624 c->write->handler = ngx_mail_proxy_handler; | |
625 | |
626 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
627 ngx_add_timer(s->connection->read, pcf->timeout); | |
628 ngx_del_timer(c->read); | |
629 | |
630 c->log->action = NULL; | |
631 ngx_log_error(NGX_LOG_INFO, c->log, 0, "client logged in"); | |
632 | |
436
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
633 if (s->buffer->pos == s->buffer->last) { |
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
634 ngx_mail_proxy_handler(s->connection->write); |
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
635 |
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
636 } else { |
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
637 ngx_mail_proxy_handler(c->write); |
9b19e26b2660
Mail: smtp pipelining support.
Maxim Dounin <mdounin@mdounin.ru>
parents:
434
diff
changeset
|
638 } |
290 | 639 |
640 return; | |
641 | |
642 default: | |
643 #if (NGX_SUPPRESS_WARN) | |
644 line.len = 0; | |
645 line.data = NULL; | |
646 #endif | |
647 break; | |
648 } | |
649 | |
650 if (c->send(c, line.data, line.len) < (ssize_t) line.len) { | |
651 /* | |
652 * we treat the incomplete sending as NGX_ERROR | |
653 * because it is very strange here | |
654 */ | |
655 ngx_mail_proxy_internal_server_error(s); | |
656 return; | |
657 } | |
658 | |
659 s->proxy->buffer->pos = s->proxy->buffer->start; | |
660 s->proxy->buffer->last = s->proxy->buffer->start; | |
661 } | |
662 | |
663 | |
664 static void | |
665 ngx_mail_proxy_dummy_handler(ngx_event_t *wev) | |
666 { | |
667 ngx_connection_t *c; | |
668 ngx_mail_session_t *s; | |
669 | |
670 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, wev->log, 0, "mail proxy dummy handler"); | |
671 | |
459 | 672 if (ngx_handle_write_event(wev, 0) != NGX_OK) { |
290 | 673 c = wev->data; |
674 s = c->data; | |
675 | |
676 ngx_mail_proxy_close_session(s); | |
677 } | |
678 } | |
679 | |
680 | |
681 static ngx_int_t | |
682 ngx_mail_proxy_read_response(ngx_mail_session_t *s, ngx_uint_t state) | |
683 { | |
684 u_char *p; | |
685 ssize_t n; | |
686 ngx_buf_t *b; | |
687 ngx_mail_proxy_conf_t *pcf; | |
688 | |
689 s->connection->log->action = "reading response from upstream"; | |
690 | |
691 b = s->proxy->buffer; | |
692 | |
693 n = s->proxy->upstream.connection->recv(s->proxy->upstream.connection, | |
694 b->last, b->end - b->last); | |
695 | |
696 if (n == NGX_ERROR || n == 0) { | |
697 return NGX_ERROR; | |
698 } | |
699 | |
700 if (n == NGX_AGAIN) { | |
701 return NGX_AGAIN; | |
702 } | |
703 | |
704 b->last += n; | |
705 | |
706 if (b->last - b->pos < 5) { | |
707 return NGX_AGAIN; | |
708 } | |
709 | |
710 if (*(b->last - 2) != CR || *(b->last - 1) != LF) { | |
711 if (b->last == b->end) { | |
712 *(b->last - 1) = '\0'; | |
713 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
714 "upstream sent too long response line: \"%s\"", | |
715 b->pos); | |
716 return NGX_ERROR; | |
717 } | |
718 | |
719 return NGX_AGAIN; | |
720 } | |
721 | |
722 p = b->pos; | |
723 | |
724 switch (s->protocol) { | |
725 | |
726 case NGX_MAIL_POP3_PROTOCOL: | |
727 if (p[0] == '+' && p[1] == 'O' && p[2] == 'K') { | |
728 return NGX_OK; | |
729 } | |
730 break; | |
731 | |
732 case NGX_MAIL_IMAP_PROTOCOL: | |
733 switch (state) { | |
734 | |
735 case ngx_imap_start: | |
736 if (p[0] == '*' && p[1] == ' ' && p[2] == 'O' && p[3] == 'K') { | |
737 return NGX_OK; | |
738 } | |
739 break; | |
740 | |
741 case ngx_imap_login: | |
742 case ngx_imap_user: | |
743 if (p[0] == '+') { | |
744 return NGX_OK; | |
745 } | |
746 break; | |
747 | |
748 case ngx_imap_passwd: | |
749 if (ngx_strncmp(p, s->tag.data, s->tag.len) == 0) { | |
750 p += s->tag.len; | |
751 if (p[0] == 'O' && p[1] == 'K') { | |
752 return NGX_OK; | |
753 } | |
754 } | |
755 break; | |
756 } | |
757 | |
758 break; | |
759 | |
760 default: /* NGX_MAIL_SMTP_PROTOCOL */ | |
761 switch (state) { | |
762 | |
449 | 763 case ngx_smtp_start: |
764 if (p[0] == '2' && p[1] == '2' && p[2] == '0') { | |
765 return NGX_OK; | |
766 } | |
767 break; | |
768 | |
290 | 769 case ngx_smtp_helo: |
449 | 770 case ngx_smtp_helo_xclient: |
771 case ngx_smtp_helo_from: | |
772 case ngx_smtp_from: | |
296 | 773 if (p[0] == '2' && p[1] == '5' && p[2] == '0') { |
774 return NGX_OK; | |
775 } | |
776 break; | |
290 | 777 |
778 case ngx_smtp_xclient: | |
449 | 779 case ngx_smtp_xclient_from: |
780 if (p[0] == '2' && (p[1] == '2' || p[1] == '5') && p[2] == '0') { | |
296 | 781 return NGX_OK; |
782 } | |
783 break; | |
449 | 784 |
785 case ngx_smtp_to: | |
786 return NGX_OK; | |
290 | 787 } |
788 | |
296 | 789 break; |
290 | 790 } |
791 | |
792 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
793 | |
794 if (pcf->pass_error_message == 0) { | |
795 *(b->last - 2) = '\0'; | |
796 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
797 "upstream sent invalid response: \"%s\"", p); | |
798 return NGX_ERROR; | |
799 } | |
800 | |
801 s->out.len = b->last - p - 2; | |
802 s->out.data = p; | |
803 | |
804 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, | |
805 "upstream sent invalid response: \"%V\"", &s->out); | |
806 | |
807 s->out.len = b->last - b->pos; | |
808 s->out.data = b->pos; | |
809 | |
810 return NGX_ERROR; | |
811 } | |
812 | |
813 | |
814 static void | |
815 ngx_mail_proxy_handler(ngx_event_t *ev) | |
816 { | |
817 char *action, *recv_action, *send_action; | |
818 size_t size; | |
819 ssize_t n; | |
820 ngx_buf_t *b; | |
821 ngx_uint_t do_write; | |
822 ngx_connection_t *c, *src, *dst; | |
823 ngx_mail_session_t *s; | |
824 ngx_mail_proxy_conf_t *pcf; | |
825 | |
826 c = ev->data; | |
827 s = c->data; | |
828 | |
829 if (ev->timedout) { | |
830 c->log->action = "proxying"; | |
831 | |
832 if (c == s->connection) { | |
833 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, | |
834 "client timed out"); | |
835 c->timedout = 1; | |
836 | |
837 } else { | |
838 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, | |
839 "upstream timed out"); | |
840 } | |
841 | |
842 ngx_mail_proxy_close_session(s); | |
843 return; | |
844 } | |
845 | |
846 if (c == s->connection) { | |
847 if (ev->write) { | |
848 recv_action = "proxying and reading from upstream"; | |
849 send_action = "proxying and sending to client"; | |
850 src = s->proxy->upstream.connection; | |
851 dst = c; | |
852 b = s->proxy->buffer; | |
853 | |
854 } else { | |
855 recv_action = "proxying and reading from client"; | |
856 send_action = "proxying and sending to upstream"; | |
857 src = c; | |
858 dst = s->proxy->upstream.connection; | |
859 b = s->buffer; | |
860 } | |
861 | |
862 } else { | |
863 if (ev->write) { | |
864 recv_action = "proxying and reading from client"; | |
865 send_action = "proxying and sending to upstream"; | |
866 src = s->connection; | |
867 dst = c; | |
868 b = s->buffer; | |
869 | |
870 } else { | |
871 recv_action = "proxying and reading from upstream"; | |
872 send_action = "proxying and sending to client"; | |
873 src = c; | |
874 dst = s->connection; | |
875 b = s->proxy->buffer; | |
876 } | |
877 } | |
878 | |
879 do_write = ev->write ? 1 : 0; | |
880 | |
881 ngx_log_debug3(NGX_LOG_DEBUG_MAIL, ev->log, 0, | |
882 "mail proxy handler: %d, #%d > #%d", | |
883 do_write, src->fd, dst->fd); | |
884 | |
885 for ( ;; ) { | |
886 | |
887 if (do_write) { | |
888 | |
889 size = b->last - b->pos; | |
890 | |
891 if (size && dst->write->ready) { | |
892 c->log->action = send_action; | |
893 | |
894 n = dst->send(dst, b->pos, size); | |
895 | |
896 if (n == NGX_ERROR) { | |
897 ngx_mail_proxy_close_session(s); | |
898 return; | |
899 } | |
900 | |
901 if (n > 0) { | |
902 b->pos += n; | |
903 | |
904 if (b->pos == b->last) { | |
905 b->pos = b->start; | |
906 b->last = b->start; | |
907 } | |
908 } | |
909 } | |
910 } | |
911 | |
912 size = b->end - b->last; | |
913 | |
914 if (size && src->read->ready) { | |
915 c->log->action = recv_action; | |
916 | |
917 n = src->recv(src, b->last, size); | |
918 | |
919 if (n == NGX_AGAIN || n == 0) { | |
920 break; | |
921 } | |
922 | |
923 if (n > 0) { | |
924 do_write = 1; | |
925 b->last += n; | |
926 | |
927 continue; | |
928 } | |
929 | |
930 if (n == NGX_ERROR) { | |
931 src->read->eof = 1; | |
932 } | |
933 } | |
934 | |
935 break; | |
936 } | |
937 | |
938 c->log->action = "proxying"; | |
939 | |
324 | 940 if ((s->connection->read->eof && s->buffer->pos == s->buffer->last) |
941 || (s->proxy->upstream.connection->read->eof | |
942 && s->proxy->buffer->pos == s->proxy->buffer->last) | |
943 || (s->connection->read->eof | |
944 && s->proxy->upstream.connection->read->eof)) | |
290 | 945 { |
946 action = c->log->action; | |
947 c->log->action = NULL; | |
948 ngx_log_error(NGX_LOG_INFO, c->log, 0, "proxied session done"); | |
949 c->log->action = action; | |
950 | |
951 ngx_mail_proxy_close_session(s); | |
952 return; | |
953 } | |
954 | |
459 | 955 if (ngx_handle_write_event(dst->write, 0) != NGX_OK) { |
290 | 956 ngx_mail_proxy_close_session(s); |
957 return; | |
958 } | |
959 | |
459 | 960 if (ngx_handle_read_event(dst->read, 0) != NGX_OK) { |
290 | 961 ngx_mail_proxy_close_session(s); |
962 return; | |
963 } | |
964 | |
459 | 965 if (ngx_handle_write_event(src->write, 0) != NGX_OK) { |
290 | 966 ngx_mail_proxy_close_session(s); |
967 return; | |
968 } | |
969 | |
459 | 970 if (ngx_handle_read_event(src->read, 0) != NGX_OK) { |
290 | 971 ngx_mail_proxy_close_session(s); |
972 return; | |
973 } | |
974 | |
975 if (c == s->connection) { | |
976 pcf = ngx_mail_get_module_srv_conf(s, ngx_mail_proxy_module); | |
977 ngx_add_timer(c->read, pcf->timeout); | |
978 } | |
979 } | |
980 | |
981 | |
982 static void | |
983 ngx_mail_proxy_upstream_error(ngx_mail_session_t *s) | |
984 { | |
985 if (s->proxy->upstream.connection) { | |
986 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, s->connection->log, 0, | |
987 "close mail proxy connection: %d", | |
988 s->proxy->upstream.connection->fd); | |
989 | |
990 ngx_close_connection(s->proxy->upstream.connection); | |
991 } | |
992 | |
993 if (s->out.len == 0) { | |
994 ngx_mail_session_internal_server_error(s); | |
995 return; | |
996 } | |
997 | |
998 s->quit = 1; | |
999 ngx_mail_send(s->connection->write); | |
1000 } | |
1001 | |
1002 | |
1003 static void | |
1004 ngx_mail_proxy_internal_server_error(ngx_mail_session_t *s) | |
1005 { | |
1006 if (s->proxy->upstream.connection) { | |
1007 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, s->connection->log, 0, | |
1008 "close mail proxy connection: %d", | |
1009 s->proxy->upstream.connection->fd); | |
1010 | |
1011 ngx_close_connection(s->proxy->upstream.connection); | |
1012 } | |
1013 | |
1014 ngx_mail_session_internal_server_error(s); | |
1015 } | |
1016 | |
1017 | |
1018 static void | |
1019 ngx_mail_proxy_close_session(ngx_mail_session_t *s) | |
1020 { | |
1021 if (s->proxy->upstream.connection) { | |
1022 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, s->connection->log, 0, | |
1023 "close mail proxy connection: %d", | |
1024 s->proxy->upstream.connection->fd); | |
1025 | |
1026 ngx_close_connection(s->proxy->upstream.connection); | |
1027 } | |
1028 | |
1029 ngx_mail_close_connection(s->connection); | |
1030 } | |
1031 | |
1032 | |
1033 static void * | |
1034 ngx_mail_proxy_create_conf(ngx_conf_t *cf) | |
1035 { | |
1036 ngx_mail_proxy_conf_t *pcf; | |
1037 | |
1038 pcf = ngx_pcalloc(cf->pool, sizeof(ngx_mail_proxy_conf_t)); | |
1039 if (pcf == NULL) { | |
1040 return NGX_CONF_ERROR; | |
1041 } | |
1042 | |
1043 pcf->enable = NGX_CONF_UNSET; | |
1044 pcf->pass_error_message = NGX_CONF_UNSET; | |
1045 pcf->xclient = NGX_CONF_UNSET; | |
1046 pcf->buffer_size = NGX_CONF_UNSET_SIZE; | |
1047 pcf->timeout = NGX_CONF_UNSET_MSEC; | |
1048 | |
1049 return pcf; | |
1050 } | |
1051 | |
1052 | |
1053 static char * | |
1054 ngx_mail_proxy_merge_conf(ngx_conf_t *cf, void *parent, void *child) | |
1055 { | |
1056 ngx_mail_proxy_conf_t *prev = parent; | |
1057 ngx_mail_proxy_conf_t *conf = child; | |
1058 | |
1059 ngx_conf_merge_value(conf->enable, prev->enable, 0); | |
1060 ngx_conf_merge_value(conf->pass_error_message, prev->pass_error_message, 0); | |
1061 ngx_conf_merge_value(conf->xclient, prev->xclient, 1); | |
1062 ngx_conf_merge_size_value(conf->buffer_size, prev->buffer_size, | |
1063 (size_t) ngx_pagesize); | |
1064 ngx_conf_merge_msec_value(conf->timeout, prev->timeout, 24 * 60 * 60000); | |
1065 | |
1066 return NGX_CONF_OK; | |
1067 } |