LUA_FUNCTION_DEF (util, is_valid_utf8);
/***
- * @function util.has_obscured_utf(str)
+ * @function util.has_obscured_unicode(str)
* Returns true if a string has obscure UTF symbols (zero width spaces, order marks), ignores invalid utf characters
- * @return {boolean} true if a has obscured utf characters
+ * @return {boolean} true if a has obscured unicode characters (+ character and offset if found)
*/
-LUA_FUNCTION_DEF (util, has_obscured_utf);
+LUA_FUNCTION_DEF (util, has_obscured_unicode);
/***
* @function util.readline([prompt])
LUA_INTERFACE_DEF (util, caseless_hash_fast),
LUA_INTERFACE_DEF (util, is_utf_spoofed),
LUA_INTERFACE_DEF (util, is_valid_utf8),
- LUA_INTERFACE_DEF (util, has_obscured_utf),
+ LUA_INTERFACE_DEF (util, has_obscured_unicode),
LUA_INTERFACE_DEF (util, readline),
LUA_INTERFACE_DEF (util, readpassphrase),
LUA_INTERFACE_DEF (util, file_exists),
}
static gint
-lua_util_has_obscured_utf (lua_State *L)
+lua_util_has_obscured_unicode (lua_State *L)
{
LUA_TRACE_POINT;
const gchar *str;
gsize len;
- gint32 i = 0;
+ gint32 i = 0, prev_i;
UChar32 uc;
str = lua_tolstring (L, 1, &len);
while (i < len) {
+ prev_i = i;
U8_NEXT (str, i, len, uc);
if (uc > 0) {
if (IS_OBSCURED_CHAR (uc)) {
lua_pushboolean (L, true);
lua_pushnumber (L, uc); /* Character */
- lua_pushnumber (L, i); /* Offset */
+ lua_pushnumber (L, prev_i); /* Offset */
return 3;
}
-- This plugin implements mime types checks for mail messages
local logger = require "rspamd_logger"
local lua_util = require "lua_util"
+local rspamd_util = require "rspamd_util"
local N = "mime_types"
local settings = {
file = '',
symbol_archive_in_archive = 'MIME_ARCHIVE_IN_ARCHIVE',
symbol_double_extension = 'MIME_DOUBLE_BAD_EXTENSION',
symbol_bad_extension = 'MIME_BAD_EXTENSION',
+ symbol_bad_unicode = 'MIME_BAD_UNICODE',
regexp = false,
extension_map = { -- extension -> mime_type
html = 'text/html',
end
local function check_filename(fname, ct, is_archive, part)
+
+ local has_bad_unicode, char, ch_pos = rspamd_util.has_obscured_unicode(fname)
+ if has_bad_unicode then
+ task:insert_result(settings.symbol_bad_unicode, 1.0,
+ string.format("0x%xd after %s", char,
+ fname:sub(1, ch_pos)))
+ end
+
+ -- Replace potentially bad characters with '?'
+ fname = fname:gsub('[^%s%g]', '?')
+
local ext,ext2,parts = gen_extension(fname)
-- ext is the last extension, LOWERCASED
-- ext2 is the one before last extension LOWERCASED
end
if filename then
- filename = filename:gsub('[^%s%g]', '?')
check_filename(filename, ct, false, p)
end
local nfiles = #fl
for _,f in ipairs(fl) do
- -- Strip bad characters
- if f['name'] then
- f['name'] = f['name']:gsub('[\128-\255%s%G]', '?')
- end
-
if f['encrypted'] then
task:insert_result(settings['symbol_encrypted_archive'],
1.0, f['name'])
parent = id,
group = 'mime_types',
})
+ rspamd_config:register_symbol({
+ type = 'virtual',
+ name = settings['symbol_bad_unicode'],
+ parent = id,
+ group = 'mime_types',
+ })
rspamd_config:register_symbol({
type = 'virtual,nostat',
name = 'MIME_TRACE',
projects / rspamd.git / commitdiff