Home Explore Help
Sign In
LBP
/
nagios-plugins
mirror of https://github.com/nagios-plugins/nagios-plugins.git
4
0
Fork 0
Files Issues 0 Wiki
Tree: c314702b43
Branches Tags
nagios-plugins
/
plugins
/
check_smtp.c

check_smtp.c 19 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753 
  1. /******************************************************************************
    2. 

  2. 

  3.  This program is free software; you can redistribute it and/or modify
    4. 

  4.  it under the terms of the GNU General Public License as published by
    5. 

  5.  the Free Software Foundation; either version 2 of the License, or
    6. 

  6.  (at your option) any later version.
    7. 

  7. 

  8.  This program is distributed in the hope that it will be useful,
    9. 

  9.  but WITHOUT ANY WARRANTY; without even the implied warranty of
    10. 

  10.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    11. 

  11.  GNU General Public License for more details.
    12. 

  12. 

  13.  You should have received a copy of the GNU General Public License
    14. 

  14.  along with this program; if not, write to the Free Software
    15. 

  15.  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
    16. 

  16. 

  17.  $Id$
    18. 

  18.  
    19. 

  19. ******************************************************************************/
    20. 

  20. 

  21. const char *progname = "check_smtp";
    22. 

  22. const char *revision = "$Revision$";
    23. 

  23. const char *copyright = "2000-2004";
    24. 

  24. const char *email = "nagiosplug-devel@lists.sourceforge.net";
    25. 

  25. 

  26. #include "common.h"
    27. 

  27. #include "netutils.h"
    28. 

  28. #include "utils.h"
    29. 

  29. 

  30. #ifdef HAVE_SSL
    31. 

  31. int check_cert = FALSE;
    32. 

  32. int days_till_exp;
    33. 

  33. #  define my_recv(buf, len) ((use_ssl && ssl_established) ? np_net_ssl_read(buf, len) : read(sd, buf, len))
    34. 

  34. #  define my_send(buf, len) ((use_ssl && ssl_established) ? np_net_ssl_write(buf, len) : send(sd, buf, len, 0))
    35. 

  35. #else /* ifndef HAVE_SSL */
    36. 

  36. #  define my_recv(buf, len) read(sd, buf, len)
    37. 

  37. #  define my_send(buf, len) send(sd, buf, len, 0)
    38. 

  38. #endif
    39. 

  39. 

  40. enum {
    41. 

  41. 	SMTP_PORT	= 25
    42. 

  42. };
    43. 

  43. #define SMTP_EXPECT "220"
    44. 

  44. #define SMTP_HELO "HELO "
    45. 

  45. #define SMTP_EHLO "EHLO "
    46. 

  46. #define SMTP_QUIT "QUIT\r\n"
    47. 

  47. #define SMTP_STARTTLS "STARTTLS\r\n"
    48. 

  48. #define SMTP_AUTH_LOGIN "AUTH LOGIN\r\n"
    49. 

  49. 

  50. #ifndef HOST_MAX_BYTES
    51. 

  51. #define HOST_MAX_BYTES 255
    52. 

  52. #endif
    53. 

  53. 

  54. #define EHLO_SUPPORTS_STARTTLS 1
    55. 

  55. 

  56. int process_arguments (int, char **);
    57. 

  57. int validate_arguments (void);
    58. 

  58. void print_help (void);
    59. 

  59. void print_usage (void);
    60. 

  60. int my_close(void);
    61. 

  61. 

  62. #ifdef HAVE_REGEX_H
    63. 

  63. #include <regex.h>
    64. 

  64. char regex_expect[MAX_INPUT_BUFFER] = "";
    65. 

  65. regex_t preg;
    66. 

  66. regmatch_t pmatch[10];
    67. 

  67. char timestamp[20] = "";
    68. 

  68. char errbuf[MAX_INPUT_BUFFER];
    69. 

  69. int cflags = REG_EXTENDED | REG_NOSUB | REG_NEWLINE;
    70. 

  70. int eflags = 0;
    71. 

  71. int errcode, excode;
    72. 

  72. #endif
    73. 

  73. 

  74. int server_port = SMTP_PORT;
    75. 

  75. char *server_address = NULL;
    76. 

  76. char *server_expect = NULL;
    77. 

  77. int smtp_use_dummycmd = 0;
    78. 

  78. char *mail_command = NULL;
    79. 

  79. char *from_arg = NULL;
    80. 

  80. int ncommands=0;
    81. 

  81. int command_size=0;
    82. 

  82. int nresponses=0;
    83. 

  83. int response_size=0;
    84. 

  84. char **commands = NULL;
    85. 

  85. char **responses = NULL;
    86. 

  86. char *authtype = NULL;
    87. 

  87. char *authuser = NULL;
    88. 

  88. char *authpass = NULL;
    89. 

  89. int warning_time = 0;
    90. 

  90. int check_warning_time = FALSE;
    91. 

  91. int critical_time = 0;
    92. 

  92. int check_critical_time = FALSE;
    93. 

  93. int verbose = 0;
    94. 

  94. int use_ssl = FALSE;
    95. 

  95. short use_ehlo = FALSE;
    96. 

  96. short ssl_established = 0;
    97. 

  97. char *localhostname = NULL;
    98. 

  98. int sd;
    99. 

  99. char buffer[MAX_INPUT_BUFFER];
    100. 

  100. enum {
    101. 

  101.   TCP_PROTOCOL = 1,
    102. 

  102.   UDP_PROTOCOL = 2,
    103. 

  103.   MAXBUF = 1024
    104. 

  104. };
    105. 

  105. 

  106. /* written by lauri alanko */
    107. 

  107. static char *
    108. 

  108. base64 (const char *bin, size_t len)
    109. 

  109. {
    110. 

  110. 

  111. 	char *buf = (char *) malloc ((len + 2) / 3 * 4 + 1);
    112. 

  112. 	size_t i = 0, j = 0;
    113. 

  113. 

  114. 	char BASE64_END = '=';
    115. 

  115. 	char base64_table[64];
    116. 

  116. 	strncpy (base64_table, "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/", 64);
    117. 

  117. 

  118. 	while (j < len - 2) {
    119. 

  119. 		buf[i++] = base64_table[bin[j] >> 2];
    120. 

  120. 		buf[i++] = base64_table[((bin[j] & 3) << 4) | (bin[j + 1] >> 4)];
    121. 

  121. 		buf[i++] = base64_table[((bin[j + 1] & 15) << 2) | (bin[j + 2] >> 6)];
    122. 

  122. 		buf[i++] = base64_table[bin[j + 2] & 63];
    123. 

  123. 		j += 3;
    124. 

  124. 	}
    125. 

  125. 

  126. 	switch (len - j) {
    127. 

  127. 	case 1:
    128. 

  128. 		buf[i++] = base64_table[bin[j] >> 2];
    129. 

  129. 		buf[i++] = base64_table[(bin[j] & 3) << 4];
    130. 

  130. 		buf[i++] = BASE64_END;
    131. 

  131. 		buf[i++] = BASE64_END;
    132. 

  132. 		break;
    133. 

  133. 	case 2:
    134. 

  134. 		buf[i++] = base64_table[bin[j] >> 2];
    135. 

  135. 		buf[i++] = base64_table[((bin[j] & 3) << 4) | (bin[j + 1] >> 4)];
    136. 

  136. 		buf[i++] = base64_table[(bin[j + 1] & 15) << 2];
    137. 

  137. 		buf[i++] = BASE64_END;
    138. 

  138. 		break;
    139. 

  139. 	case 0:
    140. 

  140. 		break;
    141. 

  141. 	}
    142. 

  142. 

  143. 	buf[i] = '\0';
    144. 

  144. 	return buf;
    145. 

  145. }
    146. 

  146. 

  147. int
    148. 

  148. main (int argc, char **argv)
    149. 

  149. {
    150. 

  150. 	short supports_tls=FALSE;
    151. 

  151. 	int n = 0;
    152. 

  152. 	double elapsed_time;
    153. 

  153. 	long microsec;
    154. 

  154. 	int result = STATE_UNKNOWN;
    155. 

  155. 	char *cmd_str = NULL;
    156. 

  156. 	char *helocmd = NULL;
    157. 

  157. 	char *error_msg = NULL;
    158. 

  158. 	struct timeval tv;
    159. 

  159. 	struct hostent *hp;
    160. 

  160. 

  161. 	setlocale (LC_ALL, "");
    162. 

  162. 	bindtextdomain (PACKAGE, LOCALEDIR);
    163. 

  163. 	textdomain (PACKAGE);
    164. 

  164. 

  165. 	if (process_arguments (argc, argv) == ERROR)
    166. 

  166. 		usage4 (_("Could not parse arguments"));
    167. 

  167. 

  168. 	/* initialize the HELO command with the localhostname */
    169. 

  169. 	if(! localhostname){
    170. 

  170. 		localhostname = malloc (HOST_MAX_BYTES);
    171. 

  171. 		if(!localhostname){
    172. 

  172. 			printf(_("malloc() failed!\n"));
    173. 

  173. 			return STATE_CRITICAL;
    174. 

  174. 		}
    175. 

  175. 		if(gethostname(localhostname, HOST_MAX_BYTES)){
    176. 

  176. 			printf(_("gethostname() failed!\n"));
    177. 

  177. 			return STATE_CRITICAL;
    178. 

  178. 		}
    179. 

  179. 		hp = gethostbyname(localhostname);
    180. 

  180. 		if(!hp) helocmd = localhostname;
    181. 

  181. 		else helocmd = hp->h_name;
    182. 

  182. 	} else {
    183. 

  183. 		helocmd = localhostname;
    184. 

  184. 	}
    185. 

  185. 	if(use_ehlo)
    186. 

  186. 		asprintf (&helocmd, "%s%s%s", SMTP_EHLO, helocmd, "\r\n");
    187. 

  187. 	else
    188. 

  188. 		asprintf (&helocmd, "%s%s%s", SMTP_HELO, helocmd, "\r\n");
    189. 

  189. 

  190. 	/* initialize the MAIL command with optional FROM command  */
    191. 

  191. 	asprintf (&cmd_str, "%sFROM: %s%s", mail_command, from_arg, "\r\n");
    192. 

  192. 

  193. 	if (verbose && smtp_use_dummycmd)
    194. 

  194. 		printf ("FROM CMD: %s", cmd_str);
    195. 

  195. 	
    196. 

  196. 	/* initialize alarm signal handling */
    197. 

  197. 	(void) signal (SIGALRM, socket_timeout_alarm_handler);
    198. 

  198. 

  199. 	/* set socket timeout */
    200. 

  200. 	(void) alarm (socket_timeout);
    201. 

  201. 

  202. 	/* start timer */
    203. 

  203. 	gettimeofday (&tv, NULL);
    204. 

  204. 

  205. 	/* try to connect to the host at the given port number */
    206. 

  206. 	result = my_tcp_connect (server_address, server_port, &sd);
    207. 

  207. 

  208. 	if (result == STATE_OK) { /* we connected */
    209. 

  209. 

  210. 		/* watch for the SMTP connection string and */
    211. 

  211. 		/* return a WARNING status if we couldn't read any data */
    212. 

  212. 		if (recv (sd, buffer, MAX_INPUT_BUFFER - 1, 0) == -1) {
    213. 

  213. 			printf (_("recv() failed\n"));
    214. 

  214. 			result = STATE_WARNING;
    215. 

  215. 		}
    216. 

  216. 		else {
    217. 

  217. 			if (verbose)
    218. 

  218. 				printf ("%s", buffer);
    219. 

  219. 			/* strip the buffer of carriage returns */
    220. 

  220. 			strip (buffer);
    221. 

  221. 			/* make sure we find the response we are looking for */
    222. 

  222. 			if (!strstr (buffer, server_expect)) {
    223. 

  223. 				if (server_port == SMTP_PORT)
    224. 

  224. 					printf (_("Invalid SMTP response received from host\n"));
    225. 

  225. 				else
    226. 

  226. 					printf (_("Invalid SMTP response received from host on port %d\n"),
    227. 

  227. 									server_port);
    228. 

  228. 				result = STATE_WARNING;
    229. 

  229. 			}
    230. 

  230. 		}
    231. 

  231. 

  232. 		/* send the HELO/EHLO command */
    233. 

  233. 		send(sd, helocmd, strlen(helocmd), 0);
    234. 

  234. 

  235. 		/* allow for response to helo command to reach us */
    236. 

  236. 		if(read (sd, buffer, MAXBUF - 1) < 0){
    237. 

  237. 			printf (_("recv() failed\n"));
    238. 

  238. 			return STATE_WARNING;
    239. 

  239. 		} else if(use_ehlo){
    240. 

  240. 			buffer[MAXBUF-1]='\0';
    241. 

  241. 			if(strstr(buffer, "250 STARTTLS") != NULL ||
    242. 

  242. 			   strstr(buffer, "250-STARTTLS") != NULL){
    243. 

  243. 				supports_tls=TRUE;
    244. 

  244. 			}
    245. 

  245. 		}
    246. 

  246. 

  247. 		if(use_ssl && ! supports_tls){
    248. 

  248. 			printf(_("WARNING - TLS not supported by server\n"));
    249. 

  249. 			send (sd, SMTP_QUIT, strlen (SMTP_QUIT), 0);
    250. 

  250. 			return STATE_WARNING;
    251. 

  251. 		}
    252. 

  252. 

  253. #ifdef HAVE_SSL
    254. 

  254. 		if(use_ssl) {
    255. 

  255. 		  /* send the STARTTLS command */
    256. 

  256. 		  send(sd, SMTP_STARTTLS, strlen(SMTP_STARTTLS), 0);
    257. 

  257. 

  258. 		  recv(sd,buffer, MAX_INPUT_BUFFER-1, 0); /* wait for it */
    259. 

  259. 		  if (!strstr (buffer, server_expect)) {
    260. 

  260. 		    printf (_("Server does not support STARTTLS\n"));
    261. 

  261. 		    send (sd, SMTP_QUIT, strlen (SMTP_QUIT), 0);
    262. 

  262. 		    return STATE_UNKNOWN;
    263. 

  263. 		  }
    264. 

  264. 		  result = np_net_ssl_init(sd);
    265. 

  265. 		  if(result != STATE_OK) {
    266. 

  266. 		    printf (_("CRITICAL - Cannot create SSL context.\n"));
    267. 

  267. 		    np_net_ssl_cleanup();
    268. 

  268. 		    close(sd);
    269. 

  269. 		    return STATE_CRITICAL;
    270. 

  270. 		  } else {
    271. 

  271. 			ssl_established = 1;
    272. 

  272. 		  }
    273. 

  273. #  ifdef USE_OPENSSL
    274. 

  274. 		  if ( check_cert ) {
    275. 

  275. 		    result = np_net_ssl_check_cert(days_till_exp);
    276. 

  276. 		    if(result != STATE_OK){
    277. 

  277. 		      printf (_("CRITICAL - Cannot retrieve server certificate.\n"));
    278. 

  278. 		    }
    279. 

  279. 		    my_close();
    280. 

  280. 		    return result;
    281. 

  281. 		  }
    282. 

  282. #  endif /* USE_OPENSSL */
    283. 

  283. 		}
    284. 

  284. #endif
    285. 

  285. 				
    286. 

  286. 		/* sendmail will syslog a "NOQUEUE" error if session does not attempt
    287. 

  287. 		 * to do something useful. This can be prevented by giving a command
    288. 

  288. 		 * even if syntax is illegal (MAIL requires a FROM:<...> argument)
    289. 

  289. 		 *
    290. 

  290. 		 * According to rfc821 you can include a null reversepath in the from command
    291. 

  291. 		 * - but a log message is generated on the smtp server.
    292. 

  292. 		 *
    293. 

  293. 		 * You can disable sending mail_command with '--nocommand'
    294. 

  294. 		 * Use the -f option to provide a FROM address
    295. 

  295. 		 */
    296. 

  296. 		if (smtp_use_dummycmd) {
    297. 

  297. 		  my_send(cmd_str, strlen(cmd_str));
    298. 

  298. 		  my_recv(buffer, MAX_INPUT_BUFFER-1);
    299. 

  299. 		  if (verbose) 
    300. 

  300. 		    printf("%s", buffer);
    301. 

  301. 		}
    302. 

  302. 

  303. 		while (n < ncommands) {
    304. 

  304. 			asprintf (&cmd_str, "%s%s", commands[n], "\r\n");
    305. 

  305. 			my_send(cmd_str, strlen(cmd_str));
    306. 

  306. 			my_recv(buffer, MAX_INPUT_BUFFER-1);
    307. 

  307. 			if (verbose) 
    308. 

  308. 				printf("%s", buffer);
    309. 

  309. 			strip (buffer);
    310. 

  310. 			if (n < nresponses) {
    311. 

  311. #ifdef HAVE_REGEX_H
    312. 

  312. 				cflags |= REG_EXTENDED | REG_NOSUB | REG_NEWLINE;
    313. 

  313. 				errcode = regcomp (&preg, responses[n], cflags);
    314. 

  314. 				if (errcode != 0) {
    315. 

  315. 					regerror (errcode, &preg, errbuf, MAX_INPUT_BUFFER);
    316. 

  316. 					printf (_("Could Not Compile Regular Expression"));
    317. 

  317. 					return ERROR;
    318. 

  318. 				}
    319. 

  319. 				excode = regexec (&preg, buffer, 10, pmatch, eflags);
    320. 

  320. 				if (excode == 0) {
    321. 

  321. 					result = STATE_OK;
    322. 

  322. 				}
    323. 

  323. 				else if (excode == REG_NOMATCH) {
    324. 

  324. 					result = STATE_WARNING;
    325. 

  325. 					printf (_("SMTP %s - Invalid response '%s' to command '%s'\n"), state_text (result), buffer, commands[n]);
    326. 

  326. 				}
    327. 

  327. 				else {
    328. 

  328. 					regerror (excode, &preg, errbuf, MAX_INPUT_BUFFER);
    329. 

  329. 					printf (_("Execute Error: %s\n"), errbuf);
    330. 

  330. 					result = STATE_UNKNOWN;
    331. 

  331. 				}
    332. 

  332. #else
    333. 

  333. 				if (strstr(buffer, responses[n])!=buffer) {
    334. 

  334. 					result = STATE_WARNING;
    335. 

  335. 					printf (_("SMTP %s - Invalid response '%s' to command '%s'\n"), state_text (result), buffer, commands[n]);
    336. 

  336. 				}
    337. 

  337. #endif
    338. 

  338. 			}
    339. 

  339. 			n++;
    340. 

  340. 		}
    341. 

  341. 

  342. 		if (authtype != NULL) {
    343. 

  343. 			if (strcmp (authtype, "LOGIN") == 0) {
    344. 

  344. 				char *abuf;
    345. 

  345. 				int ret;
    346. 

  346. 				do {
    347. 

  347. 					if (authuser == NULL) {
    348. 

  348. 						result = STATE_CRITICAL;
    349. 

  349. 						error_msg = _("no authuser specified, ");
    350. 

  350. 						break;
    351. 

  351. 					}
    352. 

  352. 					if (authpass == NULL) {
    353. 

  353. 						result = STATE_CRITICAL;
    354. 

  354. 						error_msg = _("no authpass specified, ");
    355. 

  355. 						break;
    356. 

  356. 					}
    357. 

  357. 

  358. 					/* send AUTH LOGIN */
    359. 

  359. 					my_send(SMTP_AUTH_LOGIN, strlen(SMTP_AUTH_LOGIN));
    360. 

  360. 					if (verbose)
    361. 

  361. 						printf (_("sent %s\n"), "AUTH LOGIN");
    362. 

  362. 

  363. 					if((ret = my_recv(buffer, MAXBUF - 1)) < 0){
    364. 

  364. 						error_msg = _("recv() failed after AUTH LOGIN, \n");
    365. 

  365. 						result = STATE_WARNING;
    366. 

  366. 						break;
    367. 

  367. 					}
    368. 

  368. 					buffer[ret] = 0;
    369. 

  369. 					if (verbose)
    370. 

  370. 						printf (_("received %s\n"), buffer);
    371. 

  371. 

  372. 					if (strncmp (buffer, "334", 3) != 0) {
    373. 

  373. 						result = STATE_CRITICAL;
    374. 

  374. 						error_msg = _("invalid response received after AUTH LOGIN, ");
    375. 

  375. 						break;
    376. 

  376. 					}
    377. 

  377. 

  378. 					/* encode authuser with base64 */
    379. 

  379. 					abuf = base64 (authuser, strlen(authuser));
    380. 

  380. 					strcat (abuf, "\r\n");
    381. 

  381. 					my_send(abuf, strlen(abuf));
    382. 

  382. 					if (verbose)
    383. 

  383. 						printf (_("sent %s\n"), abuf);
    384. 

  384. 

  385. 					if ((ret = my_recv(buffer, MAX_INPUT_BUFFER-1)) == -1) {
    386. 

  386. 						result = STATE_CRITICAL;
    387. 

  387. 						error_msg = _("recv() failed after sending authuser, ");
    388. 

  388. 						break;
    389. 

  389. 					}
    390. 

  390. 					buffer[ret] = 0;
    391. 

  391. 					if (verbose) {
    392. 

  392. 						printf (_("received %s\n"), buffer);
    393. 

  393. 					}
    394. 

  394. 					if (strncmp (buffer, "334", 3) != 0) {
    395. 

  395. 						result = STATE_CRITICAL;
    396. 

  396. 						error_msg = _("invalid response received after authuser, ");
    397. 

  397. 						break;
    398. 

  398. 					}
    399. 

  399. 					/* encode authpass with base64 */
    400. 

  400. 					abuf = base64 (authpass, strlen(authpass));
    401. 

  401. 					strcat (abuf, "\r\n");
    402. 

  402. 					my_send(abuf, strlen(abuf));
    403. 

  403. 					if (verbose) {
    404. 

  404. 						printf (_("sent %s\n"), abuf);
    405. 

  405. 					}
    406. 

  406. 					if ((ret = my_recv(buffer, MAX_INPUT_BUFFER-1)) == -1) {
    407. 

  407. 						result = STATE_CRITICAL;
    408. 

  408. 						error_msg = _("recv() failed after sending authpass, ");
    409. 

  409. 						break;
    410. 

  410. 					}
    411. 

  411. 					buffer[ret] = 0;
    412. 

  412. 					if (verbose) {
    413. 

  413. 						printf (_("received %s\n"), buffer);
    414. 

  414. 					}
    415. 

  415. 					if (strncmp (buffer, "235", 3) != 0) {
    416. 

  416. 						result = STATE_CRITICAL;
    417. 

  417. 						error_msg = _("invalid response received after authpass, ");
    418. 

  418. 						break;
    419. 

  419. 					}
    420. 

  420. 					break;
    421. 

  421. 				} while (0);
    422. 

  422. 			} else {
    423. 

  423. 				result = STATE_CRITICAL;
    424. 

  424. 				error_msg = _("only authtype LOGIN is supported, ");
    425. 

  425. 			}
    426. 

  426. 		}
    427. 

  427. 

  428. 		/* tell the server we're done */
    429. 

  429. 		my_send (SMTP_QUIT, strlen (SMTP_QUIT));
    430. 

  430. 

  431. 		/* finally close the connection */
    432. 

  432. 		close (sd);
    433. 

  433. 	}
    434. 

  434. 

  435. 	/* reset the alarm */
    436. 

  436. 	alarm (0);
    437. 

  437. 

  438. 	microsec = deltime (tv);
    439. 

  439. 	elapsed_time = (double)microsec / 1.0e6;
    440. 

  440. 

  441. 	if (result == STATE_OK) {
    442. 

  442. 		if (check_critical_time && elapsed_time > (double) critical_time)
    443. 

  443. 			result = STATE_CRITICAL;
    444. 

  444. 		else if (check_warning_time && elapsed_time > (double) warning_time)
    445. 

  445. 			result = STATE_WARNING;
    446. 

  446. 	}
    447. 

  447. 

  448. 	printf (_("SMTP %s - %s%.3f sec. response time%s%s|%s\n"),
    449. 

  449. 			state_text (result),
    450. 

  450. 			(error_msg == NULL ? "" : error_msg),
    451. 

  451. 			elapsed_time,
    452. 

  452. 			verbose?", ":"", verbose?buffer:"",
    453. 

  453. 			fperfdata ("time", elapsed_time, "s",
    454. 

  454. 				(int)check_warning_time, warning_time,
    455. 

  455. 				(int)check_critical_time, critical_time,
    456. 

  456. 				TRUE, 0, FALSE, 0));
    457. 

  457. 

  458. 	return result;
    459. 

  459. }
    460. 

  460. 

  461. 

  462. 

  463. /* process command-line arguments */
    464. 

  464. int
    465. 

  465. process_arguments (int argc, char **argv)
    466. 

  466. {
    467. 

  467. 	int c;
    468. 

  468. 

  469. 	int option = 0;
    470. 

  470. 	static struct option longopts[] = {
    471. 

  471. 		{"hostname", required_argument, 0, 'H'},
    472. 

  472. 		{"expect", required_argument, 0, 'e'},
    473. 

  473. 		{"critical", required_argument, 0, 'c'},
    474. 

  474. 		{"warning", required_argument, 0, 'w'},
    475. 

  475. 		{"timeout", required_argument, 0, 't'},
    476. 

  476. 		{"port", required_argument, 0, 'p'},
    477. 

  477. 		{"from", required_argument, 0, 'f'},
    478. 

  478. 		{"fqdn", required_argument, 0, 'F'},
    479. 

  479. 		{"authtype", required_argument, 0, 'A'},
    480. 

  480. 		{"authuser", required_argument, 0, 'U'},
    481. 

  481. 		{"authpass", required_argument, 0, 'P'},
    482. 

  482. 		{"command", required_argument, 0, 'C'},
    483. 

  483. 		{"response", required_argument, 0, 'R'},
    484. 

  484. 		{"nocommand", required_argument, 0, 'n'},
    485. 

  485. 		{"verbose", no_argument, 0, 'v'},
    486. 

  486. 		{"version", no_argument, 0, 'V'},
    487. 

  487. 		{"use-ipv4", no_argument, 0, '4'},
    488. 

  488. 		{"use-ipv6", no_argument, 0, '6'},
    489. 

  489. 		{"help", no_argument, 0, 'h'},
    490. 

  490. 		{"starttls",no_argument,0,'S'},
    491. 

  491. 		{"certificate",required_argument,0,'D'},
    492. 

  492. 		{0, 0, 0, 0}
    493. 

  493. 	};
    494. 

  494. 

  495. 	if (argc < 2)
    496. 

  496. 		return ERROR;
    497. 

  497. 

  498. 	for (c = 1; c < argc; c++) {
    499. 

  499. 		if (strcmp ("-to", argv[c]) == 0)
    500. 

  500. 			strcpy (argv[c], "-t");
    501. 

  501. 		else if (strcmp ("-wt", argv[c]) == 0)
    502. 

  502. 			strcpy (argv[c], "-w");
    503. 

  503. 		else if (strcmp ("-ct", argv[c]) == 0)
    504. 

  504. 			strcpy (argv[c], "-c");
    505. 

  505. 	}
    506. 

  506. 

  507. 	while (1) {
    508. 

  508. 		c = getopt_long (argc, argv, "+hVv46t:p:f:e:c:w:H:C:R:SD:F:A:U:P:",
    509. 

  509. 		                 longopts, &option);
    510. 

  510. 

  511. 		if (c == -1 || c == EOF)
    512. 

  512. 			break;
    513. 

  513. 

  514. 		switch (c) {
    515. 

  515. 		case 'H':									/* hostname */
    516. 

  516. 			if (is_host (optarg)) {
    517. 

  517. 				server_address = optarg;
    518. 

  518. 			}
    519. 

  519. 			else {
    520. 

  520. 				usage2 (_("Invalid hostname/address"), optarg);
    521. 

  521. 			}
    522. 

  522. 			break;
    523. 

  523. 		case 'p':									/* port */
    524. 

  524. 			if (is_intpos (optarg))
    525. 

  525. 				server_port = atoi (optarg);
    526. 

  526. 			else
    527. 

  527. 				usage4 (_("Port must be a positive integer"));
    528. 

  528. 			break;
    529. 

  529. 		case 'F':
    530. 

  530. 		/* localhostname */
    531. 

  531. 			localhostname = strdup(optarg);
    532. 

  532. 			break;
    533. 

  533. 		case 'f':									/* from argument */
    534. 

  534. 			from_arg = optarg;
    535. 

  535. 			smtp_use_dummycmd = 1;
    536. 

  536. 			break;
    537. 

  537. 		case 'A':
    538. 

  538. 			authtype = optarg;
    539. 

  539. 			break;
    540. 

  540. 		case 'U':
    541. 

  541. 			authuser = optarg;
    542. 

  542. 			break;
    543. 

  543. 		case 'P':
    544. 

  544. 			authpass = optarg;
    545. 

  545. 			break;
    546. 

  546. 		case 'e':									/* server expect string on 220  */
    547. 

  547. 			server_expect = optarg;
    548. 

  548. 			break;
    549. 

  549. 		case 'C':									/* commands  */
    550. 

  550. 			if (ncommands >= command_size) {
    551. 

  551. 				commands = realloc (commands, command_size+8);
    552. 

  552. 				if (commands == NULL)
    553. 

  553. 					die (STATE_UNKNOWN,
    554. 

  554. 					     _("Could not realloc() units [%d]\n"), ncommands);
    555. 

  555. 			}
    556. 

  556. 			commands[ncommands] = optarg;
    557. 

  557. 			ncommands++;
    558. 

  558. 			break;
    559. 

  559. 		case 'R':									/* server responses */
    560. 

  560. 			if (nresponses >= response_size) {
    561. 

  561. 				responses = realloc (responses, response_size+8);
    562. 

  562. 				if (responses == NULL)
    563. 

  563. 					die (STATE_UNKNOWN,
    564. 

  564. 					     _("Could not realloc() units [%d]\n"), nresponses);
    565. 

  565. 			}
    566. 

  566. 			responses[nresponses] = optarg;
    567. 

  567. 			nresponses++;
    568. 

  568. 			break;
    569. 

  569. 		case 'c':									/* critical time threshold */
    570. 

  570. 			if (is_intnonneg (optarg)) {
    571. 

  571. 				critical_time = atoi (optarg);
    572. 

  572. 				check_critical_time = TRUE;
    573. 

  573. 			}
    574. 

  574. 			else {
    575. 

  575. 				usage4 (_("Critical time must be a positive integer"));
    576. 

  576. 			}
    577. 

  577. 			break;
    578. 

  578. 		case 'w':									/* warning time threshold */
    579. 

  579. 			if (is_intnonneg (optarg)) {
    580. 

  580. 				warning_time = atoi (optarg);
    581. 

  581. 				check_warning_time = TRUE;
    582. 

  582. 			}
    583. 

  583. 			else {
    584. 

  584. 				usage4 (_("Warning time must be a positive integer"));
    585. 

  585. 			}
    586. 

  586. 			break;
    587. 

  587. 		case 'v':									/* verbose */
    588. 

  588. 			verbose++;
    589. 

  589. 			break;
    590. 

  590. 		case 't':									/* timeout */
    591. 

  591. 			if (is_intnonneg (optarg)) {
    592. 

  592. 				socket_timeout = atoi (optarg);
    593. 

  593. 			}
    594. 

  594. 			else {
    595. 

  595. 				usage4 (_("Timeout interval must be a positive integer"));
    596. 

  596. 			}
    597. 

  597. 			break;
    598. 

  598. 		case 'S':
    599. 

  599. 		/* starttls */
    600. 

  600. 			use_ssl = TRUE;
    601. 

  601. 			use_ehlo = TRUE;
    602. 

  602. 			break;
    603. 

  603. 		case 'D':
    604. 

  604. 		/* Check SSL cert validity */
    605. 

  605. #ifdef USE_OPENSSL
    606. 

  606. 			if (!is_intnonneg (optarg))
    607. 

  607. 				usage2 ("Invalid certificate expiration period",optarg);
    608. 

  608. 				days_till_exp = atoi (optarg);
    609. 

  609. 				check_cert = TRUE;
    610. 

  610. #else
    611. 

  611. 				usage (_("SSL support not available - install OpenSSL and recompile"));
    612. 

  612. #endif
    613. 

  613. 			break;
    614. 

  614. 		case '4':
    615. 

  615. 			address_family = AF_INET;
    616. 

  616. 			break;
    617. 

  617. 		case '6':
    618. 

  618. #ifdef USE_IPV6
    619. 

  619. 			address_family = AF_INET6;
    620. 

  620. #else
    621. 

  621. 			usage4 (_("IPv6 support not available"));
    622. 

  622. #endif
    623. 

  623. 			break;
    624. 

  624. 		case 'V':									/* version */
    625. 

  625. 			print_revision (progname, revision);
    626. 

  626. 			exit (STATE_OK);
    627. 

  627. 		case 'h':									/* help */
    628. 

  628. 			print_help ();
    629. 

  629. 			exit (STATE_OK);
    630. 

  630. 		case '?':									/* help */
    631. 

  631. 			usage2 (_("Unknown argument"), optarg);
    632. 

  632. 		}
    633. 

  633. 	}
    634. 

  634. 

  635. 	c = optind;
    636. 

  636. 	if (server_address == NULL) {
    637. 

  637. 		if (argv[c]) {
    638. 

  638. 			if (is_host (argv[c]))
    639. 

  639. 				server_address = argv[c];
    640. 

  640. 			else
    641. 

  641. 				usage2 (_("Invalid hostname/address"), argv[c]);
    642. 

  642. 		}
    643. 

  643. 		else {
    644. 

  644. 			asprintf (&server_address, "127.0.0.1");
    645. 

  645. 		}
    646. 

  646. 	}
    647. 

  647. 

  648. 	if (server_expect == NULL)
    649. 

  649. 		server_expect = strdup (SMTP_EXPECT);
    650. 

  650. 

  651. 	if (mail_command == NULL)
    652. 

  652. 		mail_command = strdup("MAIL ");
    653. 

  653. 

  654. 	if (from_arg==NULL)
    655. 

  655. 		from_arg = strdup(" ");
    656. 

  656. 

  657. 	return validate_arguments ();
    658. 

  658. }
    659. 

  659. 

  660. 

  661. 

  662. int
    663. 

  663. validate_arguments (void)
    664. 

  664. {
    665. 

  665. 	return OK;
    666. 

  666. }
    667. 

  667. 

  668. 

  669. 

  670. void
    671. 

  671. print_help (void)
    672. 

  672. {
    673. 

  673. 	char *myport;
    674. 

  674. 	asprintf (&myport, "%d", SMTP_PORT);
    675. 

  675. 

  676. 	print_revision (progname, revision);
    677. 

  677. 

  678. 	printf ("Copyright (c) 1999-2001 Ethan Galstad <nagios@nagios.org>\n");
    679. 

  679. 	printf (COPYRIGHT, copyright, email);
    680. 

  680. 

  681. 	printf(_("This plugin will attempt to open an SMTP connection with the host.\n\n"));
    682. 

  682. 

  683. 	print_usage ();
    684. 

  684. 

  685. 	printf (_(UT_HELP_VRSN));
    686. 

  686. 

  687. 	printf (_(UT_HOST_PORT), 'p', myport);
    688. 

  688. 

  689. 	printf (_(UT_IPv46));
    690. 

  690. 

  691. 	printf (_("\
    692. 

  692.  -e, --expect=STRING\n\
    693. 

  693.    String to expect in first line of server response (default: '%s')\n\
    694. 

  694.  -n, nocommand\n\
    695. 

  695.    Suppress SMTP command\n\
    696. 

  696.  -C, --command=STRING\n\
    697. 

  697.    SMTP command (may be used repeatedly)\n\
    698. 

  698.  -R, --command=STRING\n\
    699. 

  699.    Expected response to command (may be used repeatedly)\n\
    700. 

  700.  -f, --from=STRING\n\
    701. 

  701.    FROM-address to include in MAIL command, required by Exchange 2000\n"),
    702. 

  702. 	        SMTP_EXPECT);
    703. 

  703. #ifdef HAVE_SSL
    704. 

  704.         printf (_("\
    705. 

  705.  -D, --certificate=INTEGER\n\
    706. 

  706.     Minimum number of days a certificate has to be valid.\n\
    707. 

  707.  -S, --starttls\n\
    708. 

  708.     Use STARTTLS for the connection.\n"));
    709. 

  709. #endif
    710. 

  710. 

  711. 	printf("\
    712. 

  712.  -A, --authtype=STRING\n\
    713. 

  713.    SMTP AUTH type to check (default none, only LOGIN supported)\n\
    714. 

  714.  -U, --authuser=STRING\n\
    715. 

  715.    SMTP AUTH username\n\
    716. 

  716.  -P, --authpass=STRING\n\
    717. 

  717.    SMTP AUTH password\n\
    718. 

  718. 			");
    719. 

  719. 

  720. 	printf (_(UT_WARN_CRIT));
    721. 

  721. 

  722. 	printf (_(UT_TIMEOUT), DEFAULT_SOCKET_TIMEOUT);
    723. 

  723. 

  724. 	printf (_(UT_VERBOSE));
    725. 

  725. 

  726. 	printf(_("\n\
    727. 

  727. Successul connects return STATE_OK, refusals and timeouts return\n\
    728. 

  728. STATE_CRITICAL, other errors return STATE_UNKNOWN.  Successful\n\
    729. 

  729. connects, but incorrect reponse messages from the host result in\n\
    730. 

  730. STATE_WARNING return values.\n"));
    731. 

  731. 

  732. 	printf (_(UT_SUPPORT));
    733. 

  733. }
    734. 

  734. 

  735. 

  736. 

  737. void
    738. 

  738. print_usage (void)
    739. 

  739. {
    740. 

  740. 	printf ("\
    741. 

  741. Usage: %s -H host [-p port] [-e expect] [-C command] [-f from addr]\n\
    742. 

  742.                   [-A authtype -U authuser -P authpass]\n\
    743. 

  743.                   [-w warn] [-c crit] [-t timeout] [-S] [-D days] [-n] [-v] [-4|-6]\n", progname);
    744. 

  744. }
    745. 

  745. 

  746. int 
    747. 

  747. my_close (void)
    748. 

  748. {
    749. 

  749. #ifdef HAVE_SSL
    750. 

  750. 	np_net_ssl_cleanup();
    751. 

  751. #endif
    752. 

  752. 	return close(sd);
    753. 

  753. }
    754.