Ana Sayfa Keşfet Yardım
Giriş Yap
LBP
/
nagios-plugins
şunun yansıması https://github.com/nagios-plugins/nagios-plugins.git
4
0
Çatalla 0
Dosyalar Sorunlar 0 Wiki
Ağaç: cbbfed30eb
Dallar Biçim İmleri
nagios-plugins
/
plugins
/
check_smtp.c

check_smtp.c 19 KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744 
  1. /******************************************************************************
    2. 

  2. 

  3.  This program is free software; you can redistribute it and/or modify
    4. 

  4.  it under the terms of the GNU General Public License as published by
    5. 

  5.  the Free Software Foundation; either version 2 of the License, or
    6. 

  6.  (at your option) any later version.
    7. 

  7. 

  8.  This program is distributed in the hope that it will be useful,
    9. 

  9.  but WITHOUT ANY WARRANTY; without even the implied warranty of
    10. 

  10.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    11. 

  11.  GNU General Public License for more details.
    12. 

  12. 

  13.  You should have received a copy of the GNU General Public License
    14. 

  14.  along with this program; if not, write to the Free Software
    15. 

  15.  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
    16. 

  16. 

  17.  $Id$
    18. 

  18.  
    19. 

  19. ******************************************************************************/
    20. 

  20. 

  21. const char *progname = "check_smtp";
    22. 

  22. const char *revision = "$Revision$";
    23. 

  23. const char *copyright = "2000-2004";
    24. 

  24. const char *email = "nagiosplug-devel@lists.sourceforge.net";
    25. 

  25. 

  26. #include "common.h"
    27. 

  27. #include "netutils.h"
    28. 

  28. #include "utils.h"
    29. 

  29. 

  30. #ifdef HAVE_SSL
    31. 

  31. int check_cert = FALSE;
    32. 

  32. int days_till_exp;
    33. 

  33. #  define my_recv(buf, len) ((use_ssl && ssl_established) ? np_net_ssl_read(buf, len) : read(sd, buf, len))
    34. 

  34. #  define my_send(buf, len) ((use_ssl && ssl_established) ? np_net_ssl_write(buf, len) : send(sd, buf, len, 0))
    35. 

  35. #else /* ifndef HAVE_SSL */
    36. 

  36. #  define my_recv(buf, len) read(sd, buf, len)
    37. 

  37. #  define my_send(buf, len) send(sd, buf, len, 0)
    38. 

  38. #endif
    39. 

  39. 

  40. enum {
    41. 

  41. 	SMTP_PORT	= 25
    42. 

  42. };
    43. 

  43. #define SMTP_EXPECT "220"
    44. 

  44. #define SMTP_HELO "HELO "
    45. 

  45. #define SMTP_EHLO "EHLO "
    46. 

  46. #define SMTP_QUIT "QUIT\r\n"
    47. 

  47. #define SMTP_STARTTLS "STARTTLS\r\n"
    48. 

  48. #define SMTP_AUTH_LOGIN "AUTH LOGIN\r\n"
    49. 

  49. 

  50. #ifndef HOST_MAX_BYTES
    51. 

  51. #define HOST_MAX_BYTES 255
    52. 

  52. #endif
    53. 

  53. 

  54. #define EHLO_SUPPORTS_STARTTLS 1
    55. 

  55. 

  56. int process_arguments (int, char **);
    57. 

  57. int validate_arguments (void);
    58. 

  58. void print_help (void);
    59. 

  59. void print_usage (void);
    60. 

  60. int my_close(void);
    61. 

  61. 

  62. #include "regex.h"
    63. 

  63. char regex_expect[MAX_INPUT_BUFFER] = "";
    64. 

  64. regex_t preg;
    65. 

  65. regmatch_t pmatch[10];
    66. 

  66. char timestamp[20] = "";
    67. 

  67. char errbuf[MAX_INPUT_BUFFER];
    68. 

  68. int cflags = REG_EXTENDED | REG_NOSUB | REG_NEWLINE;
    69. 

  69. int eflags = 0;
    70. 

  70. int errcode, excode;
    71. 

  71. 

  72. int server_port = SMTP_PORT;
    73. 

  73. char *server_address = NULL;
    74. 

  74. char *server_expect = NULL;
    75. 

  75. int smtp_use_dummycmd = 0;
    76. 

  76. char *mail_command = NULL;
    77. 

  77. char *from_arg = NULL;
    78. 

  78. int ncommands=0;
    79. 

  79. int command_size=0;
    80. 

  80. int nresponses=0;
    81. 

  81. int response_size=0;
    82. 

  82. char **commands = NULL;
    83. 

  83. char **responses = NULL;
    84. 

  84. char *authtype = NULL;
    85. 

  85. char *authuser = NULL;
    86. 

  86. char *authpass = NULL;
    87. 

  87. int warning_time = 0;
    88. 

  88. int check_warning_time = FALSE;
    89. 

  89. int critical_time = 0;
    90. 

  90. int check_critical_time = FALSE;
    91. 

  91. int verbose = 0;
    92. 

  92. int use_ssl = FALSE;
    93. 

  93. short use_ehlo = FALSE;
    94. 

  94. short ssl_established = 0;
    95. 

  95. char *localhostname = NULL;
    96. 

  96. int sd;
    97. 

  97. char buffer[MAX_INPUT_BUFFER];
    98. 

  98. enum {
    99. 

  99.   TCP_PROTOCOL = 1,
    100. 

  100.   UDP_PROTOCOL = 2,
    101. 

  101.   MAXBUF = 1024
    102. 

  102. };
    103. 

  103. 

  104. /* written by lauri alanko */
    105. 

  105. static char *
    106. 

  106. base64 (const char *bin, size_t len)
    107. 

  107. {
    108. 

  108. 

  109. 	char *buf = (char *) malloc ((len + 2) / 3 * 4 + 1);
    110. 

  110. 	size_t i = 0, j = 0;
    111. 

  111. 

  112. 	char BASE64_END = '=';
    113. 

  113. 	char base64_table[64];
    114. 

  114. 	strncpy (base64_table, "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/", 64);
    115. 

  115. 

  116. 	while (j < len - 2) {
    117. 

  117. 		buf[i++] = base64_table[bin[j] >> 2];
    118. 

  118. 		buf[i++] = base64_table[((bin[j] & 3) << 4) | (bin[j + 1] >> 4)];
    119. 

  119. 		buf[i++] = base64_table[((bin[j + 1] & 15) << 2) | (bin[j + 2] >> 6)];
    120. 

  120. 		buf[i++] = base64_table[bin[j + 2] & 63];
    121. 

  121. 		j += 3;
    122. 

  122. 	}
    123. 

  123. 

  124. 	switch (len - j) {
    125. 

  125. 	case 1:
    126. 

  126. 		buf[i++] = base64_table[bin[j] >> 2];
    127. 

  127. 		buf[i++] = base64_table[(bin[j] & 3) << 4];
    128. 

  128. 		buf[i++] = BASE64_END;
    129. 

  129. 		buf[i++] = BASE64_END;
    130. 

  130. 		break;
    131. 

  131. 	case 2:
    132. 

  132. 		buf[i++] = base64_table[bin[j] >> 2];
    133. 

  133. 		buf[i++] = base64_table[((bin[j] & 3) << 4) | (bin[j + 1] >> 4)];
    134. 

  134. 		buf[i++] = base64_table[(bin[j + 1] & 15) << 2];
    135. 

  135. 		buf[i++] = BASE64_END;
    136. 

  136. 		break;
    137. 

  137. 	case 0:
    138. 

  138. 		break;
    139. 

  139. 	}
    140. 

  140. 

  141. 	buf[i] = '\0';
    142. 

  142. 	return buf;
    143. 

  143. }
    144. 

  144. 

  145. int
    146. 

  146. main (int argc, char **argv)
    147. 

  147. {
    148. 

  148. 	short supports_tls=FALSE;
    149. 

  149. 	int n = 0;
    150. 

  150. 	double elapsed_time;
    151. 

  151. 	long microsec;
    152. 

  152. 	int result = STATE_UNKNOWN;
    153. 

  153. 	char *cmd_str = NULL;
    154. 

  154. 	char *helocmd = NULL;
    155. 

  155. 	char *error_msg = NULL;
    156. 

  156. 	struct timeval tv;
    157. 

  157. 	struct hostent *hp;
    158. 

  158. 

  159. 	setlocale (LC_ALL, "");
    160. 

  160. 	bindtextdomain (PACKAGE, LOCALEDIR);
    161. 

  161. 	textdomain (PACKAGE);
    162. 

  162. 

  163. 	if (process_arguments (argc, argv) == ERROR)
    164. 

  164. 		usage4 (_("Could not parse arguments"));
    165. 

  165. 

  166. 	/* initialize the HELO command with the localhostname */
    167. 

  167. 	if(! localhostname){
    168. 

  168. 		localhostname = malloc (HOST_MAX_BYTES);
    169. 

  169. 		if(!localhostname){
    170. 

  170. 			printf(_("malloc() failed!\n"));
    171. 

  171. 			return STATE_CRITICAL;
    172. 

  172. 		}
    173. 

  173. 		if(gethostname(localhostname, HOST_MAX_BYTES)){
    174. 

  174. 			printf(_("gethostname() failed!\n"));
    175. 

  175. 			return STATE_CRITICAL;
    176. 

  176. 		}
    177. 

  177. 		hp = gethostbyname(localhostname);
    178. 

  178. 		if(!hp) helocmd = localhostname;
    179. 

  179. 		else helocmd = hp->h_name;
    180. 

  180. 	} else {
    181. 

  181. 		helocmd = localhostname;
    182. 

  182. 	}
    183. 

  183. 	if(use_ehlo)
    184. 

  184. 		asprintf (&helocmd, "%s%s%s", SMTP_EHLO, helocmd, "\r\n");
    185. 

  185. 	else
    186. 

  186. 		asprintf (&helocmd, "%s%s%s", SMTP_HELO, helocmd, "\r\n");
    187. 

  187. 

  188. 	/* initialize the MAIL command with optional FROM command  */
    189. 

  189. 	asprintf (&cmd_str, "%sFROM: %s%s", mail_command, from_arg, "\r\n");
    190. 

  190. 

  191. 	if (verbose && smtp_use_dummycmd)
    192. 

  192. 		printf ("FROM CMD: %s", cmd_str);
    193. 

  193. 	
    194. 

  194. 	/* initialize alarm signal handling */
    195. 

  195. 	(void) signal (SIGALRM, socket_timeout_alarm_handler);
    196. 

  196. 

  197. 	/* set socket timeout */
    198. 

  198. 	(void) alarm (socket_timeout);
    199. 

  199. 

  200. 	/* start timer */
    201. 

  201. 	gettimeofday (&tv, NULL);
    202. 

  202. 

  203. 	/* try to connect to the host at the given port number */
    204. 

  204. 	result = my_tcp_connect (server_address, server_port, &sd);
    205. 

  205. 

  206. 	if (result == STATE_OK) { /* we connected */
    207. 

  207. 

  208. 		/* watch for the SMTP connection string and */
    209. 

  209. 		/* return a WARNING status if we couldn't read any data */
    210. 

  210. 		if (recv (sd, buffer, MAX_INPUT_BUFFER - 1, 0) == -1) {
    211. 

  211. 			printf (_("recv() failed\n"));
    212. 

  212. 			result = STATE_WARNING;
    213. 

  213. 		}
    214. 

  214. 		else {
    215. 

  215. 			if (verbose)
    216. 

  216. 				printf ("%s", buffer);
    217. 

  217. 			/* strip the buffer of carriage returns */
    218. 

  218. 			strip (buffer);
    219. 

  219. 			/* make sure we find the response we are looking for */
    220. 

  220. 			if (!strstr (buffer, server_expect)) {
    221. 

  221. 				if (server_port == SMTP_PORT)
    222. 

  222. 					printf (_("Invalid SMTP response received from host\n"));
    223. 

  223. 				else
    224. 

  224. 					printf (_("Invalid SMTP response received from host on port %d\n"),
    225. 

  225. 									server_port);
    226. 

  226. 				result = STATE_WARNING;
    227. 

  227. 			}
    228. 

  228. 		}
    229. 

  229. 

  230. 		/* send the HELO/EHLO command */
    231. 

  231. 		send(sd, helocmd, strlen(helocmd), 0);
    232. 

  232. 

  233. 		/* allow for response to helo command to reach us */
    234. 

  234. 		if(read (sd, buffer, MAXBUF - 1) < 0){
    235. 

  235. 			printf (_("recv() failed\n"));
    236. 

  236. 			return STATE_WARNING;
    237. 

  237. 		} else if(use_ehlo){
    238. 

  238. 			buffer[MAXBUF-1]='\0';
    239. 

  239. 			if(strstr(buffer, "250 STARTTLS") != NULL ||
    240. 

  240. 			   strstr(buffer, "250-STARTTLS") != NULL){
    241. 

  241. 				supports_tls=TRUE;
    242. 

  242. 			}
    243. 

  243. 		}
    244. 

  244. 

  245. 		if(use_ssl && ! supports_tls){
    246. 

  246. 			printf(_("WARNING - TLS not supported by server\n"));
    247. 

  247. 			send (sd, SMTP_QUIT, strlen (SMTP_QUIT), 0);
    248. 

  248. 			return STATE_WARNING;
    249. 

  249. 		}
    250. 

  250. 

  251. #ifdef HAVE_SSL
    252. 

  252. 		if(use_ssl) {
    253. 

  253. 		  /* send the STARTTLS command */
    254. 

  254. 		  send(sd, SMTP_STARTTLS, strlen(SMTP_STARTTLS), 0);
    255. 

  255. 

  256. 		  recv(sd,buffer, MAX_INPUT_BUFFER-1, 0); /* wait for it */
    257. 

  257. 		  if (!strstr (buffer, server_expect)) {
    258. 

  258. 		    printf (_("Server does not support STARTTLS\n"));
    259. 

  259. 		    send (sd, SMTP_QUIT, strlen (SMTP_QUIT), 0);
    260. 

  260. 		    return STATE_UNKNOWN;
    261. 

  261. 		  }
    262. 

  262. 		  result = np_net_ssl_init(sd);
    263. 

  263. 		  if(result != STATE_OK) {
    264. 

  264. 		    printf (_("CRITICAL - Cannot create SSL context.\n"));
    265. 

  265. 		    np_net_ssl_cleanup();
    266. 

  266. 		    close(sd);
    267. 

  267. 		    return STATE_CRITICAL;
    268. 

  268. 		  } else {
    269. 

  269. 			ssl_established = 1;
    270. 

  270. 		  }
    271. 

  271. #  ifdef USE_OPENSSL
    272. 

  272. 		  if ( check_cert ) {
    273. 

  273. 		    result = np_net_ssl_check_cert(days_till_exp);
    274. 

  274. 		    if(result != STATE_OK){
    275. 

  275. 		      printf (_("CRITICAL - Cannot retrieve server certificate.\n"));
    276. 

  276. 		    }
    277. 

  277. 		    my_close();
    278. 

  278. 		    return result;
    279. 

  279. 		  }
    280. 

  280. #  endif /* USE_OPENSSL */
    281. 

  281. 		}
    282. 

  282. #endif
    283. 

  283. 				
    284. 

  284. 		/* sendmail will syslog a "NOQUEUE" error if session does not attempt
    285. 

  285. 		 * to do something useful. This can be prevented by giving a command
    286. 

  286. 		 * even if syntax is illegal (MAIL requires a FROM:<...> argument)
    287. 

  287. 		 *
    288. 

  288. 		 * According to rfc821 you can include a null reversepath in the from command
    289. 

  289. 		 * - but a log message is generated on the smtp server.
    290. 

  290. 		 *
    291. 

  291. 		 * You can disable sending mail_command with '--nocommand'
    292. 

  292. 		 * Use the -f option to provide a FROM address
    293. 

  293. 		 */
    294. 

  294. 		if (smtp_use_dummycmd) {
    295. 

  295. 		  my_send(cmd_str, strlen(cmd_str));
    296. 

  296. 		  my_recv(buffer, MAX_INPUT_BUFFER-1);
    297. 

  297. 		  if (verbose) 
    298. 

  298. 		    printf("%s", buffer);
    299. 

  299. 		}
    300. 

  300. 

  301. 		while (n < ncommands) {
    302. 

  302. 			asprintf (&cmd_str, "%s%s", commands[n], "\r\n");
    303. 

  303. 			my_send(cmd_str, strlen(cmd_str));
    304. 

  304. 			my_recv(buffer, MAX_INPUT_BUFFER-1);
    305. 

  305. 			if (verbose) 
    306. 

  306. 				printf("%s", buffer);
    307. 

  307. 			strip (buffer);
    308. 

  308. 			if (n < nresponses) {
    309. 

  309. 				cflags |= REG_EXTENDED | REG_NOSUB | REG_NEWLINE;
    310. 

  310. 				errcode = regcomp (&preg, responses[n], cflags);
    311. 

  311. 				if (errcode != 0) {
    312. 

  312. 					regerror (errcode, &preg, errbuf, MAX_INPUT_BUFFER);
    313. 

  313. 					printf (_("Could Not Compile Regular Expression"));
    314. 

  314. 					return ERROR;
    315. 

  315. 				}
    316. 

  316. 				excode = regexec (&preg, buffer, 10, pmatch, eflags);
    317. 

  317. 				if (excode == 0) {
    318. 

  318. 					result = STATE_OK;
    319. 

  319. 				}
    320. 

  320. 				else if (excode == REG_NOMATCH) {
    321. 

  321. 					result = STATE_WARNING;
    322. 

  322. 					printf (_("SMTP %s - Invalid response '%s' to command '%s'\n"), state_text (result), buffer, commands[n]);
    323. 

  323. 				}
    324. 

  324. 				else {
    325. 

  325. 					regerror (excode, &preg, errbuf, MAX_INPUT_BUFFER);
    326. 

  326. 					printf (_("Execute Error: %s\n"), errbuf);
    327. 

  327. 					result = STATE_UNKNOWN;
    328. 

  328. 				}
    329. 

  329. 			}
    330. 

  330. 			n++;
    331. 

  331. 		}
    332. 

  332. 

  333. 		if (authtype != NULL) {
    334. 

  334. 			if (strcmp (authtype, "LOGIN") == 0) {
    335. 

  335. 				char *abuf;
    336. 

  336. 				int ret;
    337. 

  337. 				do {
    338. 

  338. 					if (authuser == NULL) {
    339. 

  339. 						result = STATE_CRITICAL;
    340. 

  340. 						error_msg = _("no authuser specified, ");
    341. 

  341. 						break;
    342. 

  342. 					}
    343. 

  343. 					if (authpass == NULL) {
    344. 

  344. 						result = STATE_CRITICAL;
    345. 

  345. 						error_msg = _("no authpass specified, ");
    346. 

  346. 						break;
    347. 

  347. 					}
    348. 

  348. 

  349. 					/* send AUTH LOGIN */
    350. 

  350. 					my_send(SMTP_AUTH_LOGIN, strlen(SMTP_AUTH_LOGIN));
    351. 

  351. 					if (verbose)
    352. 

  352. 						printf (_("sent %s\n"), "AUTH LOGIN");
    353. 

  353. 

  354. 					if((ret = my_recv(buffer, MAXBUF - 1)) < 0){
    355. 

  355. 						error_msg = _("recv() failed after AUTH LOGIN, \n");
    356. 

  356. 						result = STATE_WARNING;
    357. 

  357. 						break;
    358. 

  358. 					}
    359. 

  359. 					buffer[ret] = 0;
    360. 

  360. 					if (verbose)
    361. 

  361. 						printf (_("received %s\n"), buffer);
    362. 

  362. 

  363. 					if (strncmp (buffer, "334", 3) != 0) {
    364. 

  364. 						result = STATE_CRITICAL;
    365. 

  365. 						error_msg = _("invalid response received after AUTH LOGIN, ");
    366. 

  366. 						break;
    367. 

  367. 					}
    368. 

  368. 

  369. 					/* encode authuser with base64 */
    370. 

  370. 					abuf = base64 (authuser, strlen(authuser));
    371. 

  371. 					strcat (abuf, "\r\n");
    372. 

  372. 					my_send(abuf, strlen(abuf));
    373. 

  373. 					if (verbose)
    374. 

  374. 						printf (_("sent %s\n"), abuf);
    375. 

  375. 

  376. 					if ((ret = my_recv(buffer, MAX_INPUT_BUFFER-1)) == -1) {
    377. 

  377. 						result = STATE_CRITICAL;
    378. 

  378. 						error_msg = _("recv() failed after sending authuser, ");
    379. 

  379. 						break;
    380. 

  380. 					}
    381. 

  381. 					buffer[ret] = 0;
    382. 

  382. 					if (verbose) {
    383. 

  383. 						printf (_("received %s\n"), buffer);
    384. 

  384. 					}
    385. 

  385. 					if (strncmp (buffer, "334", 3) != 0) {
    386. 

  386. 						result = STATE_CRITICAL;
    387. 

  387. 						error_msg = _("invalid response received after authuser, ");
    388. 

  388. 						break;
    389. 

  389. 					}
    390. 

  390. 					/* encode authpass with base64 */
    391. 

  391. 					abuf = base64 (authpass, strlen(authpass));
    392. 

  392. 					strcat (abuf, "\r\n");
    393. 

  393. 					my_send(abuf, strlen(abuf));
    394. 

  394. 					if (verbose) {
    395. 

  395. 						printf (_("sent %s\n"), abuf);
    396. 

  396. 					}
    397. 

  397. 					if ((ret = my_recv(buffer, MAX_INPUT_BUFFER-1)) == -1) {
    398. 

  398. 						result = STATE_CRITICAL;
    399. 

  399. 						error_msg = _("recv() failed after sending authpass, ");
    400. 

  400. 						break;
    401. 

  401. 					}
    402. 

  402. 					buffer[ret] = 0;
    403. 

  403. 					if (verbose) {
    404. 

  404. 						printf (_("received %s\n"), buffer);
    405. 

  405. 					}
    406. 

  406. 					if (strncmp (buffer, "235", 3) != 0) {
    407. 

  407. 						result = STATE_CRITICAL;
    408. 

  408. 						error_msg = _("invalid response received after authpass, ");
    409. 

  409. 						break;
    410. 

  410. 					}
    411. 

  411. 					break;
    412. 

  412. 				} while (0);
    413. 

  413. 			} else {
    414. 

  414. 				result = STATE_CRITICAL;
    415. 

  415. 				error_msg = _("only authtype LOGIN is supported, ");
    416. 

  416. 			}
    417. 

  417. 		}
    418. 

  418. 

  419. 		/* tell the server we're done */
    420. 

  420. 		my_send (SMTP_QUIT, strlen (SMTP_QUIT));
    421. 

  421. 

  422. 		/* finally close the connection */
    423. 

  423. 		close (sd);
    424. 

  424. 	}
    425. 

  425. 

  426. 	/* reset the alarm */
    427. 

  427. 	alarm (0);
    428. 

  428. 

  429. 	microsec = deltime (tv);
    430. 

  430. 	elapsed_time = (double)microsec / 1.0e6;
    431. 

  431. 

  432. 	if (result == STATE_OK) {
    433. 

  433. 		if (check_critical_time && elapsed_time > (double) critical_time)
    434. 

  434. 			result = STATE_CRITICAL;
    435. 

  435. 		else if (check_warning_time && elapsed_time > (double) warning_time)
    436. 

  436. 			result = STATE_WARNING;
    437. 

  437. 	}
    438. 

  438. 

  439. 	printf (_("SMTP %s - %s%.3f sec. response time%s%s|%s\n"),
    440. 

  440. 			state_text (result),
    441. 

  441. 			(error_msg == NULL ? "" : error_msg),
    442. 

  442. 			elapsed_time,
    443. 

  443. 			verbose?", ":"", verbose?buffer:"",
    444. 

  444. 			fperfdata ("time", elapsed_time, "s",
    445. 

  445. 				(int)check_warning_time, warning_time,
    446. 

  446. 				(int)check_critical_time, critical_time,
    447. 

  447. 				TRUE, 0, FALSE, 0));
    448. 

  448. 

  449. 	return result;
    450. 

  450. }
    451. 

  451. 

  452. 

  453. 

  454. /* process command-line arguments */
    455. 

  455. int
    456. 

  456. process_arguments (int argc, char **argv)
    457. 

  457. {
    458. 

  458. 	int c;
    459. 

  459. 

  460. 	int option = 0;
    461. 

  461. 	static struct option longopts[] = {
    462. 

  462. 		{"hostname", required_argument, 0, 'H'},
    463. 

  463. 		{"expect", required_argument, 0, 'e'},
    464. 

  464. 		{"critical", required_argument, 0, 'c'},
    465. 

  465. 		{"warning", required_argument, 0, 'w'},
    466. 

  466. 		{"timeout", required_argument, 0, 't'},
    467. 

  467. 		{"port", required_argument, 0, 'p'},
    468. 

  468. 		{"from", required_argument, 0, 'f'},
    469. 

  469. 		{"fqdn", required_argument, 0, 'F'},
    470. 

  470. 		{"authtype", required_argument, 0, 'A'},
    471. 

  471. 		{"authuser", required_argument, 0, 'U'},
    472. 

  472. 		{"authpass", required_argument, 0, 'P'},
    473. 

  473. 		{"command", required_argument, 0, 'C'},
    474. 

  474. 		{"response", required_argument, 0, 'R'},
    475. 

  475. 		{"nocommand", required_argument, 0, 'n'},
    476. 

  476. 		{"verbose", no_argument, 0, 'v'},
    477. 

  477. 		{"version", no_argument, 0, 'V'},
    478. 

  478. 		{"use-ipv4", no_argument, 0, '4'},
    479. 

  479. 		{"use-ipv6", no_argument, 0, '6'},
    480. 

  480. 		{"help", no_argument, 0, 'h'},
    481. 

  481. 		{"starttls",no_argument,0,'S'},
    482. 

  482. 		{"certificate",required_argument,0,'D'},
    483. 

  483. 		{0, 0, 0, 0}
    484. 

  484. 	};
    485. 

  485. 

  486. 	if (argc < 2)
    487. 

  487. 		return ERROR;
    488. 

  488. 

  489. 	for (c = 1; c < argc; c++) {
    490. 

  490. 		if (strcmp ("-to", argv[c]) == 0)
    491. 

  491. 			strcpy (argv[c], "-t");
    492. 

  492. 		else if (strcmp ("-wt", argv[c]) == 0)
    493. 

  493. 			strcpy (argv[c], "-w");
    494. 

  494. 		else if (strcmp ("-ct", argv[c]) == 0)
    495. 

  495. 			strcpy (argv[c], "-c");
    496. 

  496. 	}
    497. 

  497. 

  498. 	while (1) {
    499. 

  499. 		c = getopt_long (argc, argv, "+hVv46t:p:f:e:c:w:H:C:R:SD:F:A:U:P:",
    500. 

  500. 		                 longopts, &option);
    501. 

  501. 

  502. 		if (c == -1 || c == EOF)
    503. 

  503. 			break;
    504. 

  504. 

  505. 		switch (c) {
    506. 

  506. 		case 'H':									/* hostname */
    507. 

  507. 			if (is_host (optarg)) {
    508. 

  508. 				server_address = optarg;
    509. 

  509. 			}
    510. 

  510. 			else {
    511. 

  511. 				usage2 (_("Invalid hostname/address"), optarg);
    512. 

  512. 			}
    513. 

  513. 			break;
    514. 

  514. 		case 'p':									/* port */
    515. 

  515. 			if (is_intpos (optarg))
    516. 

  516. 				server_port = atoi (optarg);
    517. 

  517. 			else
    518. 

  518. 				usage4 (_("Port must be a positive integer"));
    519. 

  519. 			break;
    520. 

  520. 		case 'F':
    521. 

  521. 		/* localhostname */
    522. 

  522. 			localhostname = strdup(optarg);
    523. 

  523. 			break;
    524. 

  524. 		case 'f':									/* from argument */
    525. 

  525. 			from_arg = optarg;
    526. 

  526. 			smtp_use_dummycmd = 1;
    527. 

  527. 			break;
    528. 

  528. 		case 'A':
    529. 

  529. 			authtype = optarg;
    530. 

  530. 			break;
    531. 

  531. 		case 'U':
    532. 

  532. 			authuser = optarg;
    533. 

  533. 			break;
    534. 

  534. 		case 'P':
    535. 

  535. 			authpass = optarg;
    536. 

  536. 			break;
    537. 

  537. 		case 'e':									/* server expect string on 220  */
    538. 

  538. 			server_expect = optarg;
    539. 

  539. 			break;
    540. 

  540. 		case 'C':									/* commands  */
    541. 

  541. 			if (ncommands >= command_size) {
    542. 

  542. 				commands = realloc (commands, command_size+8);
    543. 

  543. 				if (commands == NULL)
    544. 

  544. 					die (STATE_UNKNOWN,
    545. 

  545. 					     _("Could not realloc() units [%d]\n"), ncommands);
    546. 

  546. 			}
    547. 

  547. 			commands[ncommands] = optarg;
    548. 

  548. 			ncommands++;
    549. 

  549. 			break;
    550. 

  550. 		case 'R':									/* server responses */
    551. 

  551. 			if (nresponses >= response_size) {
    552. 

  552. 				responses = realloc (responses, response_size+8);
    553. 

  553. 				if (responses == NULL)
    554. 

  554. 					die (STATE_UNKNOWN,
    555. 

  555. 					     _("Could not realloc() units [%d]\n"), nresponses);
    556. 

  556. 			}
    557. 

  557. 			responses[nresponses] = optarg;
    558. 

  558. 			nresponses++;
    559. 

  559. 			break;
    560. 

  560. 		case 'c':									/* critical time threshold */
    561. 

  561. 			if (is_intnonneg (optarg)) {
    562. 

  562. 				critical_time = atoi (optarg);
    563. 

  563. 				check_critical_time = TRUE;
    564. 

  564. 			}
    565. 

  565. 			else {
    566. 

  566. 				usage4 (_("Critical time must be a positive integer"));
    567. 

  567. 			}
    568. 

  568. 			break;
    569. 

  569. 		case 'w':									/* warning time threshold */
    570. 

  570. 			if (is_intnonneg (optarg)) {
    571. 

  571. 				warning_time = atoi (optarg);
    572. 

  572. 				check_warning_time = TRUE;
    573. 

  573. 			}
    574. 

  574. 			else {
    575. 

  575. 				usage4 (_("Warning time must be a positive integer"));
    576. 

  576. 			}
    577. 

  577. 			break;
    578. 

  578. 		case 'v':									/* verbose */
    579. 

  579. 			verbose++;
    580. 

  580. 			break;
    581. 

  581. 		case 't':									/* timeout */
    582. 

  582. 			if (is_intnonneg (optarg)) {
    583. 

  583. 				socket_timeout = atoi (optarg);
    584. 

  584. 			}
    585. 

  585. 			else {
    586. 

  586. 				usage4 (_("Timeout interval must be a positive integer"));
    587. 

  587. 			}
    588. 

  588. 			break;
    589. 

  589. 		case 'S':
    590. 

  590. 		/* starttls */
    591. 

  591. 			use_ssl = TRUE;
    592. 

  592. 			use_ehlo = TRUE;
    593. 

  593. 			break;
    594. 

  594. 		case 'D':
    595. 

  595. 		/* Check SSL cert validity */
    596. 

  596. #ifdef USE_OPENSSL
    597. 

  597. 			if (!is_intnonneg (optarg))
    598. 

  598. 				usage2 ("Invalid certificate expiration period",optarg);
    599. 

  599. 				days_till_exp = atoi (optarg);
    600. 

  600. 				check_cert = TRUE;
    601. 

  601. #else
    602. 

  602. 				usage (_("SSL support not available - install OpenSSL and recompile"));
    603. 

  603. #endif
    604. 

  604. 			break;
    605. 

  605. 		case '4':
    606. 

  606. 			address_family = AF_INET;
    607. 

  607. 			break;
    608. 

  608. 		case '6':
    609. 

  609. #ifdef USE_IPV6
    610. 

  610. 			address_family = AF_INET6;
    611. 

  611. #else
    612. 

  612. 			usage4 (_("IPv6 support not available"));
    613. 

  613. #endif
    614. 

  614. 			break;
    615. 

  615. 		case 'V':									/* version */
    616. 

  616. 			print_revision (progname, revision);
    617. 

  617. 			exit (STATE_OK);
    618. 

  618. 		case 'h':									/* help */
    619. 

  619. 			print_help ();
    620. 

  620. 			exit (STATE_OK);
    621. 

  621. 		case '?':									/* help */
    622. 

  622. 			usage2 (_("Unknown argument"), optarg);
    623. 

  623. 		}
    624. 

  624. 	}
    625. 

  625. 

  626. 	c = optind;
    627. 

  627. 	if (server_address == NULL) {
    628. 

  628. 		if (argv[c]) {
    629. 

  629. 			if (is_host (argv[c]))
    630. 

  630. 				server_address = argv[c];
    631. 

  631. 			else
    632. 

  632. 				usage2 (_("Invalid hostname/address"), argv[c]);
    633. 

  633. 		}
    634. 

  634. 		else {
    635. 

  635. 			asprintf (&server_address, "127.0.0.1");
    636. 

  636. 		}
    637. 

  637. 	}
    638. 

  638. 

  639. 	if (server_expect == NULL)
    640. 

  640. 		server_expect = strdup (SMTP_EXPECT);
    641. 

  641. 

  642. 	if (mail_command == NULL)
    643. 

  643. 		mail_command = strdup("MAIL ");
    644. 

  644. 

  645. 	if (from_arg==NULL)
    646. 

  646. 		from_arg = strdup(" ");
    647. 

  647. 

  648. 	return validate_arguments ();
    649. 

  649. }
    650. 

  650. 

  651. 

  652. 

  653. int
    654. 

  654. validate_arguments (void)
    655. 

  655. {
    656. 

  656. 	return OK;
    657. 

  657. }
    658. 

  658. 

  659. 

  660. 

  661. void
    662. 

  662. print_help (void)
    663. 

  663. {
    664. 

  664. 	char *myport;
    665. 

  665. 	asprintf (&myport, "%d", SMTP_PORT);
    666. 

  666. 

  667. 	print_revision (progname, revision);
    668. 

  668. 

  669. 	printf ("Copyright (c) 1999-2001 Ethan Galstad <nagios@nagios.org>\n");
    670. 

  670. 	printf (COPYRIGHT, copyright, email);
    671. 

  671. 

  672. 	printf(_("This plugin will attempt to open an SMTP connection with the host.\n\n"));
    673. 

  673. 

  674. 	print_usage ();
    675. 

  675. 

  676. 	printf (_(UT_HELP_VRSN));
    677. 

  677. 

  678. 	printf (_(UT_HOST_PORT), 'p', myport);
    679. 

  679. 

  680. 	printf (_(UT_IPv46));
    681. 

  681. 

  682. 	printf (_("\
    683. 

  683.  -e, --expect=STRING\n\
    684. 

  684.    String to expect in first line of server response (default: '%s')\n\
    685. 

  685.  -n, nocommand\n\
    686. 

  686.    Suppress SMTP command\n\
    687. 

  687.  -C, --command=STRING\n\
    688. 

  688.    SMTP command (may be used repeatedly)\n\
    689. 

  689.  -R, --command=STRING\n\
    690. 

  690.    Expected response to command (may be used repeatedly)\n\
    691. 

  691.  -f, --from=STRING\n\
    692. 

  692.    FROM-address to include in MAIL command, required by Exchange 2000\n"),
    693. 

  693. 	        SMTP_EXPECT);
    694. 

  694. #ifdef HAVE_SSL
    695. 

  695.         printf (_("\
    696. 

  696.  -D, --certificate=INTEGER\n\
    697. 

  697.     Minimum number of days a certificate has to be valid.\n\
    698. 

  698.  -S, --starttls\n\
    699. 

  699.     Use STARTTLS for the connection.\n"));
    700. 

  700. #endif
    701. 

  701. 

  702. 	printf("\
    703. 

  703.  -A, --authtype=STRING\n\
    704. 

  704.    SMTP AUTH type to check (default none, only LOGIN supported)\n\
    705. 

  705.  -U, --authuser=STRING\n\
    706. 

  706.    SMTP AUTH username\n\
    707. 

  707.  -P, --authpass=STRING\n\
    708. 

  708.    SMTP AUTH password\n\
    709. 

  709. 			");
    710. 

  710. 

  711. 	printf (_(UT_WARN_CRIT));
    712. 

  712. 

  713. 	printf (_(UT_TIMEOUT), DEFAULT_SOCKET_TIMEOUT);
    714. 

  714. 

  715. 	printf (_(UT_VERBOSE));
    716. 

  716. 

  717. 	printf(_("\n\
    718. 

  718. Successul connects return STATE_OK, refusals and timeouts return\n\
    719. 

  719. STATE_CRITICAL, other errors return STATE_UNKNOWN.  Successful\n\
    720. 

  720. connects, but incorrect reponse messages from the host result in\n\
    721. 

  721. STATE_WARNING return values.\n"));
    722. 

  722. 

  723. 	printf (_(UT_SUPPORT));
    724. 

  724. }
    725. 

  725. 

  726. 

  727. 

  728. void
    729. 

  729. print_usage (void)
    730. 

  730. {
    731. 

  731. 	printf ("\
    732. 

  732. Usage: %s -H host [-p port] [-e expect] [-C command] [-f from addr]\n\
    733. 

  733.                   [-A authtype -U authuser -P authpass]\n\
    734. 

  734.                   [-w warn] [-c crit] [-t timeout] [-S] [-D days] [-n] [-v] [-4|-6]\n", progname);
    735. 

  735. }
    736. 

  736. 

  737. int 
    738. 

  738. my_close (void)
    739. 

  739. {
    740. 

  740. #ifdef HAVE_SSL
    741. 

  741. 	np_net_ssl_cleanup();
    742. 

  742. #endif
    743. 

  743. 	return close(sd);
    744. 

  744. }
    745.