]>
source.dussan.org Git - rspamd.git/log
Vsevolod Stakhov [Fri, 7 Jun 2019 15:02:17 +0000 (16:02 +0100)]
[Fix] Do not assert if length of sig is bad, just fail verification
Vsevolod Stakhov [Fri, 7 Jun 2019 12:40:37 +0000 (13:40 +0100)]
[Project] Store settings id directly
Vsevolod Stakhov [Wed, 5 Jun 2019 16:09:51 +0000 (17:09 +0100)]
Merge pull request #2917 from moisseev/webui
[WebUI] Scan/Learn: enable/disable buttons on mouse events
moisseev [Wed, 5 Jun 2019 16:07:16 +0000 (19:07 +0300)]
[WebUI] Scan/Learn: enable/disable buttons on mouse events
(drag-and-drop and context menu cut, delete, paste)
Vsevolod Stakhov [Wed, 5 Jun 2019 13:09:42 +0000 (14:09 +0100)]
[Minor] Langdet: Improve debugging slightly
Vsevolod Stakhov [Wed, 5 Jun 2019 12:59:45 +0000 (13:59 +0100)]
[CritFix] Langdet: Fix language detection where no stop words found
Vsevolod Stakhov [Wed, 5 Jun 2019 12:59:29 +0000 (13:59 +0100)]
[Minor] Langdet: Increase cut-off limit
Vsevolod Stakhov [Wed, 5 Jun 2019 11:04:15 +0000 (12:04 +0100)]
[Fix] Lang_det: Try better to distinguish Chinese and Japanese
Vsevolod Stakhov [Wed, 5 Jun 2019 10:39:15 +0000 (11:39 +0100)]
[Fix] Really fix hyperscan workaround
Closes: #2916
Vsevolod Stakhov [Wed, 5 Jun 2019 09:45:27 +0000 (10:45 +0100)]
Revert "[Fix] Escape utf in regexp to dodge ragel/hyperscan issue"
This reverts commit
e658c7fcb5d275f144954b9cea1c34fadfa81902 .
Vsevolod Stakhov [Tue, 4 Jun 2019 11:56:30 +0000 (12:56 +0100)]
[Test] Fix json tests
Vsevolod Stakhov [Tue, 4 Jun 2019 09:06:24 +0000 (10:06 +0100)]
[Fix] Escape utf in regexp to dodge ragel/hyperscan issue
Vsevolod Stakhov [Mon, 3 Jun 2019 16:09:15 +0000 (17:09 +0100)]
[Minor] Arm64: Implement poor man slabs
Issue: #2906
Vsevolod Stakhov [Mon, 3 Jun 2019 16:09:02 +0000 (17:09 +0100)]
[Minor] Fix missing require
Vsevolod Stakhov [Mon, 3 Jun 2019 15:10:19 +0000 (16:10 +0100)]
[Minor] Dkim_signing: NDR are not DKIM signed
Issue: #2901
Vsevolod Stakhov [Sun, 2 Jun 2019 22:32:24 +0000 (23:32 +0100)]
[Minor] Fix indentation
Vsevolod Stakhov [Sat, 1 Jun 2019 20:57:42 +0000 (21:57 +0100)]
[Minor] Fix tabulation
Vsevolod Stakhov [Fri, 31 May 2019 15:41:10 +0000 (16:41 +0100)]
[Test] Adopt dkim signing tests to load modules
Vsevolod Stakhov [Fri, 31 May 2019 15:40:52 +0000 (16:40 +0100)]
[Minor] Compat: Allow to use old style sign_condition
Vsevolod Stakhov [Fri, 31 May 2019 15:20:42 +0000 (16:20 +0100)]
[Rework] Dkim: Remove signing code
Vsevolod Stakhov [Fri, 31 May 2019 15:16:38 +0000 (16:16 +0100)]
[Rework] Dkim_signing: Move sign condition to dkim_signing
Vsevolod Stakhov [Fri, 31 May 2019 15:16:16 +0000 (16:16 +0100)]
[Minor] Lua_util: Add callback_from_string routine
Vsevolod Stakhov [Fri, 31 May 2019 14:19:43 +0000 (15:19 +0100)]
[Test] Add functional tests for ssl in lua_tcp
Vsevolod Stakhov [Fri, 31 May 2019 14:19:29 +0000 (15:19 +0100)]
[Test] Add dummy ssl echo server
Vsevolod Stakhov [Fri, 31 May 2019 14:19:00 +0000 (15:19 +0100)]
[Test] Fix sockets reusing
Vsevolod Stakhov [Thu, 30 May 2019 16:23:44 +0000 (17:23 +0100)]
[Minor] LibUCL: Fix reading at the end of chunk
Vsevolod Stakhov [Thu, 30 May 2019 15:29:23 +0000 (16:29 +0100)]
[Minor] Disable PCRE jit on OSX completely
Vsevolod Stakhov [Thu, 30 May 2019 15:21:00 +0000 (16:21 +0100)]
[Minor] Fix pcre2 jit checks
Vsevolod Stakhov [Thu, 30 May 2019 15:20:45 +0000 (16:20 +0100)]
[Minor] Lua_tcp: Add starttls implementation
Vsevolod Stakhov [Thu, 30 May 2019 14:03:54 +0000 (15:03 +0100)]
[Minor] SURBL: Do not append suffix to the options list
Vsevolod Stakhov [Wed, 29 May 2019 21:15:45 +0000 (22:15 +0100)]
[Feature] Lua_tcp: Add preliminary support of SSL connections
Vsevolod Stakhov [Wed, 29 May 2019 19:08:32 +0000 (20:08 +0100)]
[CritFix] Fix loading of DKIM public keys
Vsevolod Stakhov [Wed, 29 May 2019 17:46:19 +0000 (18:46 +0100)]
[Fix] Do not output rbl suffix in symbol option
Vsevolod Stakhov [Sat, 25 May 2019 13:44:06 +0000 (14:44 +0100)]
[Minor] Use lua_smtp for dmarc reports
Vsevolod Stakhov [Sat, 25 May 2019 13:24:39 +0000 (14:24 +0100)]
[Minor] Rework API to remove task dependency
Vsevolod Stakhov [Sat, 25 May 2019 13:21:25 +0000 (14:21 +0100)]
[Minor] Use lua_smtp in metadata_exporter
Vsevolod Stakhov [Sat, 25 May 2019 13:12:44 +0000 (14:12 +0100)]
[Feature] Add lua_smtp library
Vsevolod Stakhov [Sat, 25 May 2019 11:41:11 +0000 (12:41 +0100)]
Merge pull request #2911 from HeinleinSupport/master
[Minor] Fix oletools defaults
Carsten Rosenberg [Fri, 24 May 2019 18:31:59 +0000 (20:31 +0200)]
[Minor] Fix oletools defaults
Vsevolod Stakhov [Fri, 24 May 2019 15:50:32 +0000 (16:50 +0100)]
[Minor] Fix format string
Vsevolod Stakhov [Fri, 24 May 2019 15:28:17 +0000 (16:28 +0100)]
[Minor] Adopt lpeg for aarch64 and luajit
Issue: #2906
Vsevolod Stakhov [Fri, 24 May 2019 13:52:01 +0000 (14:52 +0100)]
[Minor] Remove string from top to avoid lua stack issues
Vsevolod Stakhov [Fri, 24 May 2019 13:46:00 +0000 (14:46 +0100)]
[Minor] Fix processing message ids without braces
Vsevolod Stakhov [Fri, 24 May 2019 13:34:31 +0000 (14:34 +0100)]
[Minor] Settings: Add workarounds for maxscore
Vsevolod Stakhov [Fri, 24 May 2019 13:13:13 +0000 (14:13 +0100)]
[Fix] Do not use lightuserdata for traceback
LuaJIT limits lightuserdata usage to 47 bits. On Arm64, this leads to
break of the C <-> Lua interoperability using this type.
This rework has changed traceback function behaviour from lightuserdata
opaque pointer (GString * in particular) to luaL_Buffer.
Issue: #2906
Vsevolod Stakhov [Thu, 23 May 2019 16:20:22 +0000 (17:20 +0100)]
[Fix] Lua_tcp: Report connection failures
Issue: #2899
Vsevolod Stakhov [Thu, 23 May 2019 14:58:56 +0000 (15:58 +0100)]
[Fix] Fix history reset
Issue: #2910
Vsevolod Stakhov [Thu, 23 May 2019 14:40:43 +0000 (15:40 +0100)]
[Minor] Add Changelog for 1.9.4
Vsevolod Stakhov [Thu, 23 May 2019 14:37:15 +0000 (15:37 +0100)]
[Minor] Clickhouse: Add exceptions logic
Vsevolod Stakhov [Wed, 22 May 2019 14:06:32 +0000 (15:06 +0100)]
[Minor] Archives: Distinguish compressed headers and encrypted archives
Vsevolod Stakhov [Wed, 22 May 2019 13:13:29 +0000 (14:13 +0100)]
[Minor] Write email address in options
Vsevolod Stakhov [Tue, 21 May 2019 18:51:23 +0000 (19:51 +0100)]
[CritFix] Fix case sensivity when parsing Content-Type
Vsevolod Stakhov [Tue, 21 May 2019 18:21:05 +0000 (19:21 +0100)]
[Feature] Clickhouse: Utilise LowCardinality feature
Vsevolod Stakhov [Tue, 21 May 2019 16:42:45 +0000 (17:42 +0100)]
[Feature] Adopt emails module to use lua_maps
Vsevolod Stakhov [Tue, 21 May 2019 16:30:27 +0000 (17:30 +0100)]
[Feature] Use maps logic from lua_maps for multimap
Vsevolod Stakhov [Tue, 21 May 2019 15:58:44 +0000 (16:58 +0100)]
[Feature] Add maps cache and type refinement
Vsevolod Stakhov [Tue, 21 May 2019 09:44:17 +0000 (10:44 +0100)]
[Fix] Fix dkim signing exceptions
Issue: #2909
Vsevolod Stakhov [Mon, 20 May 2019 17:00:52 +0000 (18:00 +0100)]
[Test] Add combined maps tests
Vsevolod Stakhov [Mon, 20 May 2019 16:49:18 +0000 (17:49 +0100)]
[Minor] Fix occasional break
Vsevolod Stakhov [Mon, 20 May 2019 16:37:51 +0000 (17:37 +0100)]
[Minor] Fix testing for zero
Vsevolod Stakhov [Mon, 20 May 2019 16:18:39 +0000 (17:18 +0100)]
[Feature] Multimap: Add combined maps prototype
Vsevolod Stakhov [Mon, 20 May 2019 16:18:30 +0000 (17:18 +0100)]
[Minor] More fixes
Vsevolod Stakhov [Mon, 20 May 2019 15:58:27 +0000 (16:58 +0100)]
[Minor] Fix selectors usage
Vsevolod Stakhov [Mon, 20 May 2019 10:00:52 +0000 (11:00 +0100)]
[Minor] Clickhouse: Change scores to Float32 for now
Vsevolod Stakhov [Sun, 19 May 2019 19:34:44 +0000 (20:34 +0100)]
[Test] Add unit tests for fpconv
Vsevolod Stakhov [Sun, 19 May 2019 19:34:20 +0000 (20:34 +0100)]
[Fix] Further fixes to printing of the FP numbers
Vsevolod Stakhov [Sun, 19 May 2019 09:41:02 +0000 (10:41 +0100)]
[Minor] Reformat file to fix tabs/spaces mess
Vsevolod Stakhov [Sun, 19 May 2019 09:35:34 +0000 (10:35 +0100)]
[Fix] Fix some more corner cases for fpconv
Vsevolod Stakhov [Sat, 18 May 2019 14:06:20 +0000 (15:06 +0100)]
[Fix] Avoid another overflow in fpconv
Issue: #2904
Vsevolod Stakhov [Sat, 18 May 2019 13:36:32 +0000 (14:36 +0100)]
[Minor] Add symbols and type heuristic
Vsevolod Stakhov [Sat, 18 May 2019 13:36:10 +0000 (14:36 +0100)]
[Minor] Implement generic whitelist in reputation plugin
Vsevolod Stakhov [Sat, 18 May 2019 13:19:24 +0000 (14:19 +0100)]
[Minor] Allow virtual symbols with no parent
Vsevolod Stakhov [Sat, 18 May 2019 08:42:41 +0000 (09:42 +0100)]
[Rework] Slashing: Change versioning schema - move to 2.0
Vsevolod Stakhov [Sat, 18 May 2019 08:29:33 +0000 (09:29 +0100)]
[Minor] Increase priority of the asn module
Vsevolod Stakhov [Sat, 18 May 2019 07:19:44 +0000 (08:19 +0100)]
[Minor] Fix condition
Vsevolod Stakhov [Fri, 17 May 2019 19:10:25 +0000 (20:10 +0100)]
[Minor] Add docs
Vsevolod Stakhov [Fri, 17 May 2019 17:34:14 +0000 (18:34 +0100)]
[Project] Add preliminary version of maps expressions
Vsevolod Stakhov [Fri, 17 May 2019 16:54:26 +0000 (17:54 +0100)]
[Minor] Lua_expression: Allow simplier invocation of create function
Vsevolod Stakhov [Fri, 17 May 2019 16:15:10 +0000 (17:15 +0100)]
[Minor] Fix setting structure's fields
Vsevolod Stakhov [Fri, 17 May 2019 14:46:20 +0000 (15:46 +0100)]
[Rework] Rework expression API
Vsevolod Stakhov [Fri, 17 May 2019 13:30:03 +0000 (14:30 +0100)]
[Minor] Allow to execute expressions with process closures
Vsevolod Stakhov [Fri, 17 May 2019 11:35:06 +0000 (12:35 +0100)]
[Rework] Reputation: Slashing - change name of symbols
Vsevolod Stakhov [Fri, 17 May 2019 10:56:48 +0000 (11:56 +0100)]
[Minor] Try to fix Debian linking issue
Vsevolod Stakhov [Wed, 15 May 2019 14:07:16 +0000 (15:07 +0100)]
[Project] Reputation: Rework get function and scores calculations
Vsevolod Stakhov [Wed, 15 May 2019 13:45:40 +0000 (14:45 +0100)]
[Minor] Try use math.tanh if available
Vsevolod Stakhov [Wed, 15 May 2019 13:09:40 +0000 (14:09 +0100)]
[Project] Reputation: Migrate to adaptive EMA model
Vsevolod Stakhov [Tue, 14 May 2019 18:16:51 +0000 (19:16 +0100)]
[Minor] Fix resolver docs
Vsevolod Stakhov [Tue, 14 May 2019 18:15:09 +0000 (19:15 +0100)]
[Minor] Return score with verdict
Vsevolod Stakhov [Tue, 14 May 2019 15:03:11 +0000 (16:03 +0100)]
[Rework] Reputation: Remove ipnet from the ip reputation
Vsevolod Stakhov [Tue, 14 May 2019 09:53:17 +0000 (10:53 +0100)]
[Test] Add some tests for arc signing
Vsevolod Stakhov [Tue, 14 May 2019 09:52:35 +0000 (10:52 +0100)]
[Fix] Arc: Another bunch of fixes for arc signing
Vsevolod Stakhov [Tue, 14 May 2019 08:05:37 +0000 (09:05 +0100)]
[Fix] Arc: More arc signing fixes
Vsevolod Stakhov [Mon, 13 May 2019 20:06:39 +0000 (21:06 +0100)]
[Fix] Fix ARC signing after fixing another bug in it...
Vsevolod Stakhov [Mon, 13 May 2019 16:40:10 +0000 (17:40 +0100)]
[Feature] URL: Apply stringprep to hostnames to filter garbage
Vsevolod Stakhov [Mon, 13 May 2019 15:14:37 +0000 (16:14 +0100)]
[Minor] HTML: Allow to extract base url from the tag
Vsevolod Stakhov [Mon, 13 May 2019 14:50:22 +0000 (15:50 +0100)]
[Fix] Ratelimit: Fix dynamic score
Vsevolod Stakhov [Mon, 13 May 2019 13:24:08 +0000 (14:24 +0100)]
[Minor] Update version to 1.9.4
Vsevolod Stakhov [Mon, 13 May 2019 13:23:04 +0000 (14:23 +0100)]
Release 1.9.3
* [Conf] Add IP_SCORE_FREEMAIL composite rule
* [Feature] Add cryptobox method to generate dkim keypairs
* [Feature] Add fast hashes to lua cryptobox hash
* [Feature] Add least passthrough results
* [Feature] Allow oversign if exists mode
* [Feature] Clickhouse: Modernise table initial schema
* [Feature] Implement IUF interface for specific fast hashes
* [Feature] Lua_util: Allow to obfuscate different fields
* [Feature] Tune memory management in Rspamd and Lua
* [Fix] Avoid buffer overflow when printing long lua strings
* [Fix] Change the default oversigning headers to a more sane list
* [Fix] Clickhouse: Do not store digest as it is not needed now
* [Fix] Clickhouse: Fix lots of storage issues
* [Fix] Clickhouse: Support custom actions
* [Fix] Deny URLs where hostname is bogus
* [Fix] Do not blacklist mail by SPF/DMARC for local/authed users
* [Fix] Fix DoS caused by bug in glib
* [Fix] Fix UCL parsing of the multiline strings
* [Fix] Fix buffer overflow when printing small floats
* [Fix] Fix init code for servers keypairs cache
* [Fix] Fix issue with urls with no tld (e.g. IP)
* [Fix] Fix memory in arc signing logic
* [Fix] Fix memory leak in language detector during reloads
* [Fix] Fix mixed case content type processing
* [Fix] Fix processing of the ip urls in file
* [Fix] Fix use after free
* [Fix] HTML: Fix `size` attribute processing
* [Fix] Hum, it seems that
99ff1c8 was not correct
* [Fix] Lua_task: Fix task:get_from method
* [Fix] Preserve fd when mapping file to scan
* [Fix] Re-use milter_headers settings when doing arc signing
* [Fix] Set dmarc force action as least action
* [Fix] Switch to GMT
* [Fix] allow PKCS7 signatures to be text/plain, too
* [Project] Add initial version of the vault management tool
* [Project] Add vault support for DKIM and ARC signing
* [Project] Implement keys rotation in the vault
* [Project] Improve dkim keys generation for vault
* [Project] Improve keys creation in rspamadm vault
* [Rework] Move lua_worker to a dedicated unit
* [WebUI] Add URL fragments (#) support
* [WebUI] Fix AJAX request URL
Signed-off-by: Vsevolod Stakhov <vsevolod@highsecure.ru>
Vsevolod Stakhov [Mon, 13 May 2019 11:38:26 +0000 (12:38 +0100)]
[Fix] Re-use milter_headers settings when doing arc signing
Issue: #2073
Vsevolod Stakhov [Mon, 13 May 2019 10:36:20 +0000 (11:36 +0100)]
[Minor] Change the default list of oversigned headers
Trivia:
`Subject` header needs to be oversigned as an attacker could add some
'bad' subject to DKIM signed emails with no subject (rare but possible
case). This header is clearly displayed to a user hence, its presence as
well as absence MUST be oversigned explicitly.
`Reply-To` header is widely used to designate a special address used for
replies only but not for authentication checks. It is thus possible to
add a malicious `Reply-To` header to force users to reply to a DKIM
signed email to some attacker's controlled email address. It clearly
opens surface for social engineering like attacks and this header must
thus be unconditionally oversigned even if not presented in an original
message.
Issue: #2887