]>
source.dussan.org Git - rspamd.git/log
Vsevolod Stakhov [Fri, 20 Sep 2024 13:00:05 +0000 (19:00 +0600)]
Merge branch 'master' into vstakhov-cpu-detection
Ivan Stakhov [Wed, 18 Sep 2024 16:10:59 +0000 (19:10 +0300)]
[Feature] Add rspamadm secretbox command
* [Minor] Small fix for error messages
* [Feature] Create rspamadm util to decrypt header
* [Feature] Create python example to encrypt/decrypt header
* [Minor] Small clean up
* [Minor] Change c-rspamadm util to lua-rspamadm util
* [Minor] Small clean up
* [Minor] Add some debug
* [Feature] Add secretbox command
* [Minor] Debug
* [Minor] Add additional return for encrypted string(noce + encrypted string
* [Minor] Small debug
* [Minor] Add a way to provide encrypted text concatenated with nonce
* [Minor] Add nonce to encrypt text
* [Minor] Clean up
* [Minor] Clean up unused variable
* [Minor] Small fix
* [Minor] Fix return issue
* [Minor] Add blake2b for key derivation
* [Minor] Small upgrade to debug
* [Minor] Small clean up
* [Minor] Change return to more convenient form
* [Minor] Change print to test form
* [Test] Provide tests for encrypt/decrypt with rspamadm util and python script
* [Minor] Change python to python3
* [Minor] Add stderr check
* [Minor] Make the function return nonce+text
* [Minor] Change unit tests to new return format
* [Minor] Add flag to manage encodings
* [Minor] Add --encoding argument to manage encodings
* [Minor] Change tests for new input format
* [Minor] Fix lua format
* [Minor] Small fix
* [Minor] Provide full support for new return format of maybe_encrypt_header
* [Test] Test small fix
* [Test] Small fix
* [Minor] Clean up
* [Minor] Small fix for name of variable
* [Minor] Small clean up
* [Minor] Change format of command to a mre convenient
* [Minor] Change tests to be same as a format of a command
* [Minor] Change description of flags
* [Minor] Small fix
---------
Co-authored-by: Ivan Stakhov <50211739+LeftTry@users.noreply.github.com>
Vsevolod Stakhov [Wed, 18 Sep 2024 16:10:20 +0000 (22:10 +0600)]
Merge pull request #5142 from fatalbanana/dmarc_only_domains
[Feature] DMARC: Implement reporting.only_domains setting
Andrew Lewis [Wed, 18 Sep 2024 10:57:49 +0000 (12:57 +0200)]
[Feature] DMARC: Implement reporting.only_domains setting
Vsevolod Stakhov [Mon, 16 Sep 2024 13:31:24 +0000 (14:31 +0100)]
[Rework] Use __builtin_cpu_supports where possible
Vsevolod Stakhov [Mon, 16 Sep 2024 13:22:42 +0000 (14:22 +0100)]
[Minor] Detect __builtin_cpu_supports
Vsevolod Stakhov [Sat, 14 Sep 2024 13:41:36 +0000 (14:41 +0100)]
[Minor] Do not autolearn messages without queue id
Suggested by: @moisseev
Vsevolod Stakhov [Sat, 14 Sep 2024 12:22:21 +0000 (18:22 +0600)]
Merge pull request #5133 from moisseev/test
[Test] Upgrade linters
Vsevolod Stakhov [Fri, 13 Sep 2024 12:50:23 +0000 (18:50 +0600)]
Merge pull request #5139 from spacefreak86/fix-dmarc-grammar
[Fix] Rework DMARC grammar to correctly handle spaces in values
Thomas Oettli [Fri, 13 Sep 2024 09:40:13 +0000 (11:40 +0200)]
[Minor] remove unnecessary calls of lpeg.P in DMARC grammar
Just to make to code more readable.
Thomas Oettli [Thu, 12 Sep 2024 16:43:10 +0000 (18:43 +0200)]
[Fix] Rework DMARC to correctly handle spaces in DMARC records
Issue: #4906
Vsevolod Stakhov [Thu, 12 Sep 2024 13:14:42 +0000 (19:14 +0600)]
Merge pull request #5135 from rspamd/vstakhov-fuzzy-keys-limits
Implement individual limits for fuzzy keys
Vsevolod Stakhov [Thu, 12 Sep 2024 12:33:18 +0000 (13:33 +0100)]
[Minor] Sigh, so hard to fix it
Vsevolod Stakhov [Thu, 12 Sep 2024 11:30:29 +0000 (12:30 +0100)]
[Minor] C varargs suck
Vsevolod Stakhov [Thu, 12 Sep 2024 09:55:54 +0000 (10:55 +0100)]
[Minor] Slight explanations of the decision made
Vsevolod Stakhov [Wed, 11 Sep 2024 20:40:12 +0000 (21:40 +0100)]
[Project] Implement expiration
Vsevolod Stakhov [Wed, 11 Sep 2024 20:33:30 +0000 (21:33 +0100)]
[Project] Implement per-key ratelimit
Alexander Moisseev [Wed, 11 Sep 2024 14:13:13 +0000 (17:13 +0300)]
[Test] Upgrade linters
- Upgraded `eslint` from 9.7.0 to 9.10.0
- Upgraded `@stylistic/eslint-plugin` from 2.3.0 to 2.8.0
- Upgraded `stylelint` from 16.7.0 to 16.9.0
Vsevolod Stakhov [Wed, 11 Sep 2024 14:00:48 +0000 (15:00 +0100)]
[Project] Add parsing of key limits and expire date
Vsevolod Stakhov [Wed, 11 Sep 2024 13:43:22 +0000 (14:43 +0100)]
[Project] Add ratelimit parsing for fuzzy keys
Vsevolod Stakhov [Wed, 11 Sep 2024 13:16:23 +0000 (14:16 +0100)]
[Project] Move ratelimit parsing stuff to a common library
Vsevolod Stakhov [Tue, 10 Sep 2024 16:01:52 +0000 (17:01 +0100)]
[Project] Rework ratelimits check
Vsevolod Stakhov [Tue, 10 Sep 2024 10:14:26 +0000 (11:14 +0100)]
[Minor] Fix some unsafe chmod
Vsevolod Stakhov [Tue, 10 Sep 2024 09:28:00 +0000 (10:28 +0100)]
[Minor] Fix some SSL issues
Vsevolod Stakhov [Tue, 10 Sep 2024 08:43:06 +0000 (14:43 +0600)]
Merge pull request #5131 from rspamd/vstakhov-fuzzy-mode
[Feature] Allow different modes for fuzzy rules
Vsevolod Stakhov [Mon, 9 Sep 2024 17:55:55 +0000 (18:55 +0100)]
[Feature] Allow differen modes for fuzzy rules
Vsevolod Stakhov [Sun, 8 Sep 2024 15:50:38 +0000 (21:50 +0600)]
Merge pull request #5129 from rspamd/vstakhov-redis-schema
[Fix] Another fix for Redis schema
Vsevolod Stakhov [Sat, 7 Sep 2024 13:42:15 +0000 (14:42 +0100)]
[Fix] Another fix for Redis schema
Issue: #5112
Vsevolod Stakhov [Thu, 5 Sep 2024 15:34:49 +0000 (21:34 +0600)]
Merge pull request #5127 from rspamd/vstakhov-fuzzy-symbols
Rework fuzzy symbols
Vsevolod Stakhov [Thu, 5 Sep 2024 12:46:12 +0000 (13:46 +0100)]
[Rework] Implement new replies logic on the server's side
Vsevolod Stakhov [Thu, 5 Sep 2024 12:42:08 +0000 (13:42 +0100)]
[Minor] Add `encryption_required` symbol
Vsevolod Stakhov [Thu, 5 Sep 2024 12:36:40 +0000 (13:36 +0100)]
[Minor] s/BLOCKED/FORBIDDEN/
We want it to be more informative and to distinguish from FUZZY_DENIED
Vsevolod Stakhov [Thu, 5 Sep 2024 12:35:12 +0000 (13:35 +0100)]
[Rework] Change fuzzy error symbols
FUZZY_BLOCKED -> FUZZY_RATELIMITED
FUZZY_BLOCKED - new symbol for permanent bans
Ivan Stakhov [Thu, 5 Sep 2024 10:48:22 +0000 (13:48 +0300)]
[Feature] Add tooling to encrypt strings in Lua
* [Fix] Provide support for OpenSSL 3.0
* [Feature] Provide function to encode header with configured public key
* [Feature] Provide function to decode header with configured public key
* [Test] Add tests for maybe encode/decode header
* [Minor] Fix tests for encode/decode header
* [Minor] Small clean up
* [Minor] Small clean up
* [Minor] Small fix for OpenSSL 3.0 support
* [Minor] Provide logging
* [Minor] Small fix
* [Fix] Fix typo error
* [Fix] Another typo
* [Minor] Little clean up
* [Minor] Little fix
* [Minor] Small fix
* [Minor] Small fix
* [Minor] Rewrite the arguments of secretbox:encrypt/decrypt functions to a more understandable format
* [Fix] Fix problem with nonce was not provided
* [Test] Add test for nonce
* [Minor] Little clean up
* [Minor] Little clean up
* [Test] Test
* [Test] Test
* [Test] Test
* [Minor] Little fix
* [Minor] Small fix
* [Minor] Small fix
* [Test] Small fix
* [Test] Test
* [Test] Test
* [Test] Test
* [Test] Test
* [Minor] Small fix for fips provider
* [Minor] Change provider apply logic
* [Test] Little fix for provider
* [Minor] Provide OpenSSL <3.0 support
* [Test] Possible provider fix
* [Test] Possible provider fix
* [Test] Little fix
* [Minor] Fix provider issue
* [Minor] Small clean up
* [Minor] Change logging errors
* Update lualib/lua_util.lua
---------
Co-authored-by: Vsevolod Stakhov <vsevolod@rspamd.com>
Vsevolod Stakhov [Thu, 5 Sep 2024 10:20:00 +0000 (16:20 +0600)]
Merge pull request #5126 from rspamd/vstakhov-change-passthrough
[Rework] Change the logic of skipping symbols
Vsevolod Stakhov [Wed, 4 Sep 2024 09:53:55 +0000 (10:53 +0100)]
[Rework] Change the logic of skipping symbols
We now do not skip pre/post filters even if the task result has reached
threshold.
Vsevolod Stakhov [Wed, 4 Sep 2024 09:26:31 +0000 (15:26 +0600)]
Merge pull request #5111 from oliyks/fix-icap-url-encode
[Fix] ICAP: encode constructed path to be URL safe.
Tarmo Oja [Wed, 4 Sep 2024 09:07:12 +0000 (12:07 +0300)]
deduplicate url_encode_string
Tarmo Oja [Wed, 4 Sep 2024 08:34:52 +0000 (11:34 +0300)]
Merge branch 'master' into fix-icap-url-encode
Vsevolod Stakhov [Mon, 2 Sep 2024 15:46:49 +0000 (21:46 +0600)]
Merge pull request #5125 from rspamd/vstakhov-lua-fix-register-symbols
[Fix] Unify lua symbols registration
Vsevolod Stakhov [Mon, 2 Sep 2024 15:35:31 +0000 (16:35 +0100)]
[Minor] Forgot to handle `parent`
Vsevolod Stakhov [Mon, 2 Sep 2024 15:21:58 +0000 (16:21 +0100)]
[Minor] Restore legacy way to register symbols...
Vsevolod Stakhov [Mon, 2 Sep 2024 14:45:12 +0000 (15:45 +0100)]
[Doc] Discourage old brain damaged method of symbols registration
Vsevolod Stakhov [Mon, 2 Sep 2024 14:29:14 +0000 (15:29 +0100)]
[Fix] Unify lua symbols registration
I'm curious why this bug has been not mentioned for such a long time...
Vsevolod Stakhov [Fri, 30 Aug 2024 11:40:17 +0000 (17:40 +0600)]
Merge pull request #5114 from fatalbanana/robot_startup
[Test] Improve startup error handling
Vsevolod Stakhov [Fri, 30 Aug 2024 10:07:51 +0000 (11:07 +0100)]
[Minor] Change log level for autolearning
Fix unidiomatic string builder when I'm here.
Vsevolod Stakhov [Fri, 30 Aug 2024 09:56:18 +0000 (15:56 +0600)]
Merge pull request #5121 from rspamd/vstakhov-rdns-check-condition
[Fix] Preserve the previous behaviour of RDNS_* checks
Vsevolod Stakhov [Thu, 29 Aug 2024 14:45:10 +0000 (15:45 +0100)]
[Fix] Preserve the previous behaviour of RDNS_* checks
Vsevolod Stakhov [Thu, 29 Aug 2024 14:11:30 +0000 (20:11 +0600)]
Merge pull request #5119 from slavkoja/patch-2
Update URIBL_RED/GREY scores
Slavko [Thu, 29 Aug 2024 09:16:28 +0000 (11:16 +0200)]
Update surbl_group.conf
Vsevolod Stakhov [Wed, 28 Aug 2024 19:56:34 +0000 (01:56 +0600)]
Merge pull request #5118 from rspamd/vstakhov-fix-5089
Fix for issue #5089 - learning of the empty tasks
Vsevolod Stakhov [Wed, 28 Aug 2024 12:10:28 +0000 (13:10 +0100)]
[Fix] Another safe-guards for learning/classifying an empty message
Andrew Lewis [Mon, 26 Aug 2024 10:20:43 +0000 (12:20 +0200)]
Merge branch 'master' into robot_startup
Andrew Lewis [Mon, 26 Aug 2024 10:11:50 +0000 (12:11 +0200)]
[Test] Improve on previous changes
- Remove unnecessary process waiting
- Relax retry time
Vsevolod Stakhov [Sun, 25 Aug 2024 20:51:07 +0000 (02:51 +0600)]
Merge pull request #5115 from dragoangel/patch-7
Set expiration for history_redis to 5 days by default
Dmitriy Alekseev [Sat, 24 Aug 2024 11:51:23 +0000 (13:51 +0200)]
Update history_redis.lua
Dmitriy Alekseev [Sat, 24 Aug 2024 11:42:53 +0000 (13:42 +0200)]
Set expiration for history_redis to 5 days by default
Andrew Lewis [Fri, 23 Aug 2024 15:04:52 +0000 (17:04 +0200)]
[Test] Improve startup error handling
Tarmo Oja [Fri, 23 Aug 2024 12:00:27 +0000 (15:00 +0300)]
handle nil
Tarmo Oja [Thu, 22 Aug 2024 09:57:06 +0000 (12:57 +0300)]
[PATCH] Encode constructed path to be URL safe.
fix #4643
Vsevolod Stakhov [Wed, 21 Aug 2024 19:24:49 +0000 (01:24 +0600)]
Merge pull request #5110 from fatalbanana/re_grow_factor_tests
[Test] Improve grow_factor tests
Andrew Lewis [Tue, 20 Aug 2024 10:45:12 +0000 (12:45 +0200)]
[Test] Improve grow_factor tests
Vsevolod Stakhov [Sat, 17 Aug 2024 19:25:53 +0000 (01:25 +0600)]
Fix issue with broken HTTP message to learn endpoints (#5106)
* [Fix] Check message before trying to dereference pointer
Issue: #5089
* [Minor] Fix stripping of the last characters
Vsevolod Stakhov [Sat, 17 Aug 2024 18:57:16 +0000 (19:57 +0100)]
[Minor] Fix stripping of the last characters
Ivan Stakhov [Sat, 17 Aug 2024 17:47:01 +0000 (23:47 +0600)]
Provide OpenSSL 3.0 support for lua_rsa (#5101)
* [Fix] Provide OSSL 3.0 support for lua_rsa (not working)
* [Fix] Provide full OpenSSL 3.0 for lua_rsa
* [Minor] Little clean up
* [Minor] Clean up code from debug
* [Test] Replace for fixed size fstring allocation
* [Test] Add rsa padding and signature md for pctx
* [Test] Little changes
* [Fix] Little fix for rsa_sign_memory work correctly
* [Minor] Little clean up
* [Minor] Small fix
* [Minor] Little clean up
* [Test] Add signature verification test for rsa2048
Vsevolod Stakhov [Sat, 17 Aug 2024 15:58:56 +0000 (16:58 +0100)]
[Fix] Check message before trying to dereference pointer
Issue: #5089
Vsevolod Stakhov [Fri, 16 Aug 2024 12:50:58 +0000 (18:50 +0600)]
Merge pull request #5104 from rspamd/vstakhov-transparent-ucl
[Project] Allow manipulations with opaque UCL objects
Vsevolod Stakhov [Fri, 16 Aug 2024 12:25:41 +0000 (13:25 +0100)]
[Test] Add more unit tests
Vsevolod Stakhov [Fri, 16 Aug 2024 12:21:28 +0000 (13:21 +0100)]
[Minor] Add some hacks to convert lua table into either object or an array
Vsevolod Stakhov [Fri, 16 Aug 2024 12:06:30 +0000 (13:06 +0100)]
[Test] Fix broken test
Vsevolod Stakhov [Fri, 16 Aug 2024 11:45:05 +0000 (12:45 +0100)]
[Minor] Restore back one more legacy conversion
Vsevolod Stakhov [Fri, 16 Aug 2024 10:56:53 +0000 (11:56 +0100)]
[Minor] Restore legacy conversions
With new `index` method it seems much easier in fact
Vsevolod Stakhov [Fri, 16 Aug 2024 10:50:49 +0000 (11:50 +0100)]
[Minor] Add support for transparent ucl in override_defaults
Vsevolod Stakhov [Thu, 15 Aug 2024 16:55:19 +0000 (17:55 +0100)]
[Minor] Sime minor changes
Vsevolod Stakhov [Thu, 15 Aug 2024 16:45:48 +0000 (17:45 +0100)]
[Minor] Fix import again
Vsevolod Stakhov [Thu, 15 Aug 2024 16:37:46 +0000 (17:37 +0100)]
[Minor] Slight cleanup
Vsevolod Stakhov [Thu, 15 Aug 2024 16:37:17 +0000 (17:37 +0100)]
[Project] Try to allow more transparent access of ucl elements
Vsevolod Stakhov [Thu, 15 Aug 2024 14:08:47 +0000 (15:08 +0100)]
[Minor] Fix check
Vsevolod Stakhov [Thu, 15 Aug 2024 13:58:35 +0000 (14:58 +0100)]
[Rework] Breaking: Rewrite cfg transform and remove legacy
What is removed:
* SURBL/Email -> rbl conversion
* IP reputation -> reputation conversion
Reasoning:
* Too hard to support forever
* Outdated
* Want to use transparent UCL instead of modifying the config from Lua
Vsevolod Stakhov [Thu, 15 Aug 2024 13:57:54 +0000 (14:57 +0100)]
[Minor] Some minor fixes
Vsevolod Stakhov [Thu, 15 Aug 2024 13:18:50 +0000 (14:18 +0100)]
[Project] Some more fixes
Vsevolod Stakhov [Wed, 14 Aug 2024 11:27:40 +0000 (12:27 +0100)]
[Project] Add API method to push unwrapped UCL object
Vsevolod Stakhov [Tue, 13 Aug 2024 14:07:31 +0000 (15:07 +0100)]
[Test] Add unit tests for ucl functions
Vsevolod Stakhov [Tue, 13 Aug 2024 14:07:06 +0000 (15:07 +0100)]
[Fix] Make tostring in UCL a bit less brain-damaged
Vsevolod Stakhov [Tue, 13 Aug 2024 13:43:29 +0000 (14:43 +0100)]
[Project] Add more stuff to transparent UCL
Vsevolod Stakhov [Tue, 13 Aug 2024 13:03:04 +0000 (14:03 +0100)]
[Project] Allow manipulations with opaque UCL objects
If we export an UCL object to Lua we actually lose a lot of useful
properties of UCL. For example, we miss ordering, comments, implicit
arrays etc.
This PR is intended to allow manipulation with UCL object like plain
userdata, without unwrapping them to the Lua primitives.
Vsevolod Stakhov [Mon, 12 Aug 2024 18:00:54 +0000 (19:00 +0100)]
[Minor] Update publicsuffix list
Closes: #5103
Vsevolod Stakhov [Mon, 12 Aug 2024 18:00:39 +0000 (19:00 +0100)]
[Minor] More docs update
Vsevolod Stakhov [Mon, 12 Aug 2024 17:52:08 +0000 (18:52 +0100)]
[Minor] Add instructions for update
Vsevolod Stakhov [Fri, 9 Aug 2024 12:39:22 +0000 (18:39 +0600)]
Merge pull request #5100 from rspamd/vstakhov-fix-kp-encryption
Fix keypairs encryption/decryption
Vsevolod Stakhov [Fri, 9 Aug 2024 12:39:05 +0000 (18:39 +0600)]
Merge pull request #5099 from rspamd/vstakhov-remove-nist-cryptobox
Remove NIST mode from cryptobox
Vsevolod Stakhov [Fri, 9 Aug 2024 12:10:35 +0000 (13:10 +0100)]
[Test] Add test for keypairs encrypt/decrypt
Vsevolod Stakhov [Fri, 9 Aug 2024 12:03:46 +0000 (13:03 +0100)]
[Fix] Use proper keys when doing asymmetric encryption
Vsevolod Stakhov [Fri, 9 Aug 2024 11:46:17 +0000 (12:46 +0100)]
[Minor] Oops, fix pubkey loading
Vsevolod Stakhov [Fri, 9 Aug 2024 10:12:23 +0000 (11:12 +0100)]
[Project] Remove NIST mode from everywhere
Vsevolod Stakhov [Fri, 9 Aug 2024 09:00:53 +0000 (10:00 +0100)]
[Project] Remove NIST (OpenSSL) mode from cryptobox
In fact, this mode increases complexity of the crypto library for no
good reason: it is never used in Rspamd and it should not be used in fact.
It was a research project in the past that should not be supported any
longer.
Vsevolod Stakhov [Fri, 9 Aug 2024 08:14:12 +0000 (09:14 +0100)]
[Fix] Do not install doctest stuff
Reported by: @moisseev
Vsevolod Stakhov [Thu, 8 Aug 2024 09:53:35 +0000 (10:53 +0100)]
[Fix] Apply the same workaround for signing keys
Vsevolod Stakhov [Thu, 8 Aug 2024 09:46:28 +0000 (10:46 +0100)]
[Fix] Add workaround for the bug in OpenSSL < 3.0.8
Vsevolod Stakhov [Thu, 8 Aug 2024 08:52:29 +0000 (09:52 +0100)]
[Minor] CMake: show version of packages found if available