mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
20157 Commits
29 Branches
Tree: 2fbfb7c988
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2fbfb7c988'
${ noResults }
rspamd/lualib/lua_fuzzy.lua

lua_fuzzy.lua 9.1KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341 
  1. --[[

  2. Copyright (c) 2022, Vsevolod Stakhov <vsevolod@rspamd.com>

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");

  5. you may not use this file except in compliance with the License.

  6. You may obtain a copy of the License at

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0

  9. 

  10. Unless required by applicable law or agreed to in writing, software

  11. distributed under the License is distributed on an "AS IS" BASIS,

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13. See the License for the specific language governing permissions and

  14. limitations under the License.

  15. ]]--

  16. 

  17. --[[[

  18. -- @module lua_fuzzy

  19. -- This module contains helper functions for supporting fuzzy check module

  20. --]]

  21. 

  22. 

  23. local N = "lua_fuzzy"

  24. local lua_util = require "lua_util"

  25. local rspamd_regexp = require "rspamd_regexp"

  26. local fun = require "fun"

  27. local rspamd_logger = require "rspamd_logger"

  28. local ts = require("tableshape").types

  29. 

  30. -- Filled by C code, indexed by number in this table

  31. local rules = {}

  32. 

  33. -- Pre-defined rules options

  34. local policies = {

  35.   recommended = {

  36.     min_bytes = 1024,

  37.     min_height = 500,

  38.     min_width = 500,

  39.     min_length = 64,

  40.     text_multiplier = 4.0, -- divide min_bytes by 4 for texts

  41.     mime_types = {"application/*"},

  42.     scan_archives = true,

  43.     short_text_direct_hash = true,

  44.     text_shingles = true,

  45.     skip_images = false,

  46.   }

  47. }

  48. 

  49. local default_policy = policies.recommended

  50. 

  51. local policy_schema = ts.shape{

  52.   min_bytes = ts.number + ts.string / tonumber,

  53.   min_height = ts.number + ts.string / tonumber,

  54.   min_width = ts.number + ts.string / tonumber,

  55.   min_length = ts.number + ts.string / tonumber,

  56.   text_multiplier = ts.number,

  57.   mime_types = ts.array_of(ts.string),

  58.   scan_archives = ts.boolean,

  59.   short_text_direct_hash = ts.boolean,

  60.   text_shingles = ts.boolean,

  61.   skip_images = ts.boolean,

  62. }

  63. 

  64. 

  65. local exports = {}

  66. 

  67. 

  68. --[[[

  69. -- @function lua_fuzzy.register_policy(name, policy)

  70. -- Adds a new policy with name `name`. Must be valid, checked using policy_schema

  71. --]]

  72. exports.register_policy = function(name, policy)

  73.   if policies[name] then

  74.     rspamd_logger.warnx(rspamd_config, "overriding policy %s", name)

  75.   end

  76. 

  77.   local parsed_policy,err = policy_schema:transform(policy)

  78. 

  79.   if not parsed_policy then

  80.     rspamd_logger.errx(rspamd_config, 'invalid fuzzy rule policy %s: %s',

  81.         name, err)

  82. 

  83.     return

  84.   else

  85.     policies.name = parsed_policy

  86.   end

  87. end

  88. 

  89. --[[[

  90. -- @function lua_fuzzy.process_rule(rule)

  91. -- Processes fuzzy rule (applying policies or defaults if needed). Returns policy id

  92. --]]

  93. exports.process_rule = function(rule)

  94.   local processed_rule = lua_util.shallowcopy(rule)

  95.   local policy = default_policy

  96. 

  97.   if processed_rule.policy then

  98.     policy = policies[processed_rule.policy]

  99.   end

  100. 

  101.   if policy then

  102.     processed_rule = lua_util.override_defaults(policy, processed_rule)

  103.   else

  104.     rspamd_logger.warnx(rspamd_config, "unknown policy %s", processed_rule.policy)

  105.   end

  106. 

  107.   if processed_rule.mime_types then

  108.     processed_rule.mime_types = fun.totable(fun.map(function(gl)

  109.       return rspamd_regexp.import_glob(gl, 'i')

  110.     end, processed_rule.mime_types))

  111.   end

  112. 

  113.   table.insert(rules, processed_rule)

  114.   return #rules

  115. end

  116. 

  117. local function check_length(task, part, rule)

  118.   local bytes = part:get_length()

  119.   local length_ok = bytes > 0

  120. 

  121.   local id = part:get_id()

  122.   lua_util.debugm(N, task, 'check size of part %s', id)

  123. 

  124.   if length_ok and rule.min_bytes > 0 then

  125. 

  126.     local adjusted_bytes = bytes

  127. 

  128.     if part:is_text() then

  129.       -- Fuzzy plugin uses stripped utf content to get an exact hash, that

  130.       -- corresponds to `get_content_oneline()`

  131.       -- However, in the case of empty parts this method returns `nil`, so extra

  132.       -- sanity check is required.

  133.       bytes = #(part:get_text():get_content_oneline() or '')

  134. 

  135.       -- Short hashing algorithm also use subject unless explicitly denied

  136.       if not rule.no_subject then

  137.         local subject = task:get_subject() or ''

  138.         bytes = bytes + #subject

  139.       end

  140. 

  141.       if rule.text_multiplier then

  142.         adjusted_bytes = bytes * rule.text_multiplier

  143.       end

  144.     end

  145. 

  146.     if rule.min_bytes > adjusted_bytes then

  147.       lua_util.debugm(N, task, 'skip part of length %s (%s adjusted) ' ..

  148.           'as it has less than %s bytes',

  149.           bytes, adjusted_bytes, rule.min_bytes)

  150.       length_ok = false

  151.     else

  152.       lua_util.debugm(N, task, 'allow part of length %s (%s adjusted)',

  153.           bytes, adjusted_bytes, rule.min_bytes)

  154.     end

  155.   else

  156.     lua_util.debugm(N, task, 'allow part %s, no length limits', id)

  157.   end

  158. 

  159.   return length_ok

  160. end

  161. 

  162. local function check_text_part(task, part, rule, text)

  163.   local allow_direct,allow_shingles = false,false

  164. 

  165.   local id = part:get_id()

  166.   lua_util.debugm(N, task, 'check text part %s', id)

  167.   local wcnt = text:get_words_count()

  168. 

  169.   if rule.text_shingles then

  170.     -- Check number of words

  171.     local min_words = rule.min_length or 0

  172.     if min_words < 32 then

  173.       min_words = 32 -- Minimum for shingles

  174.     end

  175.     if wcnt < min_words then

  176.       lua_util.debugm(N, task, 'text has less than %s words: %s; disable shingles',

  177.           rule.min_length, wcnt)

  178.       allow_shingles = false

  179.     else

  180.       lua_util.debugm(N, task, 'allow shingles in text %s, %s words',

  181.           id, wcnt)

  182.       allow_shingles = true

  183.     end

  184. 

  185.     if not rule.short_text_direct_hash and not allow_shingles then

  186.       allow_direct = false

  187.     else

  188.       if not allow_shingles then

  189.         lua_util.debugm(N, task,

  190.             'allow direct hash for short text %s, %s words',

  191.             id, wcnt)

  192.         allow_direct = check_length(task, part, rule)

  193.       else

  194.         allow_direct = wcnt > 0

  195.       end

  196.     end

  197.   else

  198.     lua_util.debugm(N, task,

  199.         'disable shingles in text %s', id)

  200.     allow_direct = check_length(task, part, rule)

  201.   end

  202. 

  203.   return allow_direct,allow_shingles

  204. end

  205. 

  206. --local function has_sane_text_parts(task)

  207. --  local text_parts = task:get_text_parts() or {}

  208. --  return fun.any(function(tp) return tp:get_words_count() > 32 end, text_parts)

  209. --end

  210. 

  211. local function check_image_part(task, part, rule, image)

  212.   if rule.skip_images then

  213.     lua_util.debugm(N, task, 'skip image part as images are disabled')

  214.     return false,false

  215.   end

  216. 

  217.   local id = part:get_id()

  218.   lua_util.debugm(N, task, 'check image part %s', id)

  219. 

  220.   if rule.min_width > 0 or rule.min_height > 0 then

  221.     -- Check dimensions

  222.     local min_width = rule.min_width or rule.min_height

  223.     local min_height = rule.min_height or rule.min_width

  224.     local height = image:get_height()

  225.     local width = image:get_width()

  226. 

  227.     if height and width then

  228.       if height < min_height or width < min_width then

  229.         lua_util.debugm(N, task, 'skip image part %s as it does not meet minimum sizes: %sx%s < %sx%s',

  230.                 id, width, height, min_width, min_height)

  231.         return false, false

  232.       else

  233.         lua_util.debugm(N, task, 'allow image part %s: %sx%s',

  234.             id, width, height)

  235.       end

  236.     end

  237.   end

  238. 

  239.   return check_length(task, part, rule),false

  240. end

  241. 

  242. local function mime_types_check(task, part, rule)

  243.   local t,st = part:get_type()

  244. 

  245.   if not t then return false, false end

  246. 

  247.   local ct = string.format('%s/%s', t, st)

  248. 

  249.   local detected_ct

  250.   t,st = part:get_detected_type()

  251.   if t then

  252.     detected_ct = string.format('%s/%s', t, st)

  253.   else

  254.     detected_ct = ct

  255.   end

  256. 

  257.   local id = part:get_id()

  258.   lua_util.debugm(N, task, 'check binary part %s: %s', id, ct)

  259. 

  260.   -- For bad mime parts we implicitly enable fuzzy check

  261.   local mime_trace = (task:get_symbol('MIME_TRACE') or {})[1]

  262.   local opts = {}

  263. 

  264.   if mime_trace then

  265.     opts = mime_trace.options or opts

  266.   end

  267.   opts = fun.tomap(fun.map(function(opt)

  268.     local elts = lua_util.str_split(opt, ':')

  269.     return elts[1],elts[2]

  270.   end, opts))

  271. 

  272.   if opts[id] and opts[id] == '-' then

  273.     lua_util.debugm(N, task, 'explicitly check binary part %s: bad mime type %s', id, ct)

  274.     return check_length(task, part, rule),false

  275.   end

  276. 

  277.   if rule.mime_types then

  278. 

  279.     if fun.any(function(gl_re)

  280.       if gl_re:match(ct) or (detected_ct and gl_re:match(detected_ct)) then

  281.         return true

  282.       else

  283.         return false

  284.       end

  285.     end, rule.mime_types) then

  286.       lua_util.debugm(N, task, 'found mime type match for part %s: %s (%s detected)',

  287.           id, ct, detected_ct)

  288.       return check_length(task, part, rule),false

  289.     end

  290. 

  291.     return false, false

  292.   end

  293. 

  294.   return false,false

  295. end

  296. 

  297. exports.check_mime_part = function(task, part, rule_id)

  298.   local rule = rules[rule_id]

  299. 

  300.   if not rule then

  301.     rspamd_logger.errx(task, 'cannot find rule with id %s', rule_id)

  302. 

  303.     return false,false

  304.   end

  305. 

  306.   if part:is_text() then

  307.     return check_text_part(task, part, rule, part:get_text())

  308.   end

  309. 

  310.   if part:is_image() then

  311.     return check_image_part(task, part, rule, part:get_image())

  312.   end

  313. 

  314.   if part:is_archive() and rule.scan_archives then

  315.     -- Always send archives

  316.     lua_util.debugm(N, task, 'check archive part %s', part:get_id())

  317. 

  318.     return true,false

  319.   end

  320. 

  321.   if part:is_specific() then

  322.     local sp = part:get_specific()

  323. 

  324.     if type(sp) == 'table' and sp.fuzzy_hashes then

  325.       lua_util.debugm(N, task, 'check specific part %s', part:get_id())

  326.       return true,false

  327.     end

  328.   end

  329. 

  330.   if part:is_attachment() then

  331.     return mime_types_check(task, part, rule)

  332.   end

  333. 

  334.   return false,false

  335. end

  336. 

  337. exports.cleanup_rules = function()

  338.   rules = {}

  339. end

  340. 

  341. return exports