mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
20157 Commits
29 Branches
Tree: 2fbfb7c988
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2fbfb7c988'
${ noResults }
rspamd/lualib/lua_selectors/extractors.lua

extractors.lua 17KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547 
  1. --[[

  2. Copyright (c) 2022, Vsevolod Stakhov <vsevolod@rspamd.com>

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");

  5. you may not use this file except in compliance with the License.

  6. You may obtain a copy of the License at

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0

  9. 

  10. Unless required by applicable law or agreed to in writing, software

  11. distributed under the License is distributed on an "AS IS" BASIS,

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13. See the License for the specific language governing permissions and

  14. limitations under the License.

  15. ]]--

  16. 

  17. local fun = require 'fun'

  18. local meta_functions = require "lua_meta"

  19. local lua_util = require "lua_util"

  20. local rspamd_url = require "rspamd_url"

  21. local common = require "lua_selectors/common"

  22. local ts = require("tableshape").types

  23. local maps = require "lua_selectors/maps"

  24. local E = {}

  25. local M = "selectors"

  26. 

  27. local url_flags_ts = ts.array_of(ts.one_of(lua_util.keys(rspamd_url.flags))):is_optional()

  28. 

  29. local function gen_exclude_flags_filter(exclude_flags)

  30.   return function(u)

  31.     local got_flags = u:get_flags()

  32.     for _, flag in ipairs(exclude_flags) do

  33.       if got_flags[flag] then return false end

  34.     end

  35.     return true

  36.   end

  37. end

  38. 

  39. local extractors = {

  40.   -- Plain id function

  41.   ['id'] = {

  42.     ['get_value'] = function(_, args)

  43.       if args[1] then

  44.         return args[1], 'string'

  45.       end

  46. 

  47.       return '','string'

  48.     end,

  49.     ['description'] = [[Return value from function's argument or an empty string,

  50. For example, `id('Something')` returns a string 'Something']],

  51.     ['args_schema'] = {ts.string:is_optional()}

  52.   },

  53.   -- Similar but for making lists

  54.   ['list'] = {

  55.     ['get_value'] = function(_, args)

  56.       if args[1] then

  57.         return fun.map(tostring, args), 'string_list'

  58.       end

  59. 

  60.       return {},'string_list'

  61.     end,

  62.     ['description'] = [[Return a list from function's arguments or an empty list,

  63. For example, `list('foo', 'bar')` returns a list {'foo', 'bar'}]],

  64.   },

  65.   -- Get source IP address

  66.   ['ip'] = {

  67.     ['get_value'] = function(task)

  68.       local ip = task:get_ip()

  69.       if ip and ip:is_valid() then return ip,'userdata' end

  70.       return nil

  71.     end,

  72.     ['description'] = [[Get source IP address]],

  73.   },

  74.   -- Get MIME from

  75.   ['from'] = {

  76.     ['get_value'] = function(task, args)

  77.       local from

  78.       if type(args) == 'table' then

  79.         from = task:get_from(args)

  80.       else

  81.         from = task:get_from(0)

  82.       end

  83.       if ((from or E)[1] or E).addr then

  84.         return from[1],'table'

  85.       end

  86.       return nil

  87.     end,

  88.     ['description'] = [[Get MIME or SMTP from (e.g. `from('smtp')` or `from('mime')`,

  89. uses any type by default)]],

  90.   },

  91.   ['rcpts'] = {

  92.     ['get_value'] = function(task, args)

  93.       local rcpts

  94.       if type(args) == 'table' then

  95.         rcpts = task:get_recipients(args)

  96.       else

  97.         rcpts = task:get_recipients(0)

  98.       end

  99.       if ((rcpts or E)[1] or E).addr then

  100.         return rcpts,'table_list'

  101.       end

  102.       return nil

  103.     end,

  104.     ['description'] = [[Get MIME or SMTP rcpts (e.g. `rcpts('smtp')` or `rcpts('mime')`,

  105. uses any type by default)]],

  106.   },

  107.   -- Get country (ASN module must be executed first)

  108.   ['country'] = {

  109.     ['get_value'] = function(task)

  110.       local country = task:get_mempool():get_variable('country')

  111.       if not country then

  112.         return nil

  113.       else

  114.         return country,'string'

  115.       end

  116.     end,

  117.     ['description'] = [[Get country (ASN module must be executed first)]],

  118.   },

  119.   -- Get ASN number

  120.   ['asn'] = {

  121.     ['type'] = 'string',

  122.     ['get_value'] = function(task)

  123.       local asn = task:get_mempool():get_variable('asn')

  124.       if not asn then

  125.         return nil

  126.       else

  127.         return asn,'string'

  128.       end

  129.     end,

  130.     ['description'] = [[Get AS number (ASN module must be executed first)]],

  131.   },

  132.   -- Get authenticated username

  133.   ['user'] = {

  134.     ['get_value'] = function(task)

  135.       local auser = task:get_user()

  136.       if not auser then

  137.         return nil

  138.       else

  139.         return auser,'string'

  140.       end

  141.     end,

  142.     ['description'] = 'Get authenticated user name',

  143.   },

  144.   -- Get principal recipient

  145.   ['to'] = {

  146.     ['get_value'] = function(task)

  147.       return task:get_principal_recipient(),'string'

  148.     end,

  149.     ['description'] = 'Get principal recipient',

  150.   },

  151.   -- Get content digest

  152.   ['digest'] = {

  153.     ['get_value'] = function(task)

  154.       return task:get_digest(),'string'

  155.     end,

  156.     ['description'] = 'Get content digest',

  157.   },

  158.   -- Get list of all attachments digests

  159.   ['attachments'] = {

  160.     ['get_value'] = function(task, args)

  161.       local parts = task:get_parts() or E

  162.       local digests = {}

  163.       for i,p in ipairs(parts) do

  164.         if p:is_attachment() then

  165.           table.insert(digests, common.get_cached_or_raw_digest(task, i, p, args))

  166.         end

  167.       end

  168. 

  169.       if #digests > 0 then

  170.         return digests,'string_list'

  171.       end

  172. 

  173.       return nil

  174.     end,

  175.     ['description'] = [[Get list of all attachments digests.

  176. The first optional argument is encoding (`hex`, `base32` (and forms `bleach32`, `rbase32`), `base64`),

  177. the second optional argument is optional hash type (`blake2`, `sha256`, `sha1`, `sha512`, `md5`)]],

  178.     ['args_schema'] = common.digest_schema()

  179. 

  180.   },

  181.   -- Get all attachments files

  182.   ['files'] = {

  183.     ['get_value'] = function(task)

  184.       local parts = task:get_parts() or E

  185.       local files = {}

  186. 

  187.       for _,p in ipairs(parts) do

  188.         local fname = p:get_filename()

  189.         if fname then

  190.           table.insert(files, fname)

  191.         end

  192.       end

  193. 

  194.       if #files > 0 then

  195.         return files,'string_list'

  196.       end

  197. 

  198.       return nil

  199.     end,

  200.     ['description'] = 'Get all attachments files',

  201.   },

  202.   -- Get languages for text parts

  203.   ['languages'] = {

  204.     ['get_value'] = function(task)

  205.       local text_parts = task:get_text_parts() or E

  206.       local languages = {}

  207. 

  208.       for _,p in ipairs(text_parts) do

  209.         local lang = p:get_language()

  210.         if lang then

  211.           table.insert(languages, lang)

  212.         end

  213.       end

  214. 

  215.       if #languages > 0 then

  216.         return languages,'string_list'

  217.       end

  218. 

  219.       return nil

  220.     end,

  221.     ['description'] = 'Get languages for text parts',

  222.   },

  223.   -- Get helo value

  224.   ['helo'] = {

  225.     ['get_value'] = function(task)

  226.       return task:get_helo(),'string'

  227.     end,

  228.     ['description'] = 'Get helo value',

  229.   },

  230.   -- Get header with the name that is expected as an argument. Returns list of

  231.   -- headers with this name

  232.   ['header'] = {

  233.     ['get_value'] = function(task, args)

  234.       local strong = false

  235.       if args[2] then

  236.         if args[2]:match('strong') then

  237.           strong = true

  238.         end

  239. 

  240.         if args[2]:match('full') then

  241.           return task:get_header_full(args[1], strong),'table_list'

  242.         end

  243. 

  244.         return task:get_header(args[1], strong),'string'

  245.       else

  246.         return task:get_header(args[1]),'string'

  247.       end

  248.     end,

  249.     ['description'] = [[Get header with the name that is expected as an argument.

  250. The optional second argument accepts list of flags:

  251.   - `full`: returns all headers with this name with all data (like task:get_header_full())

  252.   - `strong`: use case sensitive match when matching header's name]],

  253.     ['args_schema'] = {ts.string,

  254.                        (ts.pattern("strong") + ts.pattern("full")):is_optional()}

  255.   },

  256.   -- Get list of received headers (returns list of tables)

  257.   ['received'] = {

  258.     ['get_value'] = function(task, args)

  259.       local rh = task:get_received_headers()

  260.       if not rh[1] then

  261.         return nil

  262.       end

  263.       if args[1] then

  264.         return fun.map(function(r) return r[args[1]] end, rh), 'string_list'

  265.       end

  266. 

  267.       return rh,'table_list'

  268.     end,

  269.     ['description'] = [[Get list of received headers.

  270. If no arguments specified, returns list of tables. Otherwise, selects a specific element,

  271. e.g. `by_hostname`]],

  272.   },

  273.   -- Get all urls

  274.   ['urls'] = {

  275.     ['get_value'] = function(task, args)

  276.       local urls = task:get_urls()

  277.       if not urls[1] then

  278.         return nil

  279.       end

  280.       if args[1] then

  281.         return fun.map(function(r) return r[args[1]](r) end, urls), 'string_list'

  282.       end

  283.       return urls,'userdata_list'

  284.     end,

  285.     ['description'] = [[Get list of all urls.

  286. If no arguments specified, returns list of url objects. Otherwise, calls a specific method,

  287. e.g. `get_tld`]],

  288.   },

  289.   -- Get specific urls

  290.   ['specific_urls'] = {

  291.     ['get_value'] = function(task, args)

  292.       local params = args[1] or {}

  293.       params.task = task

  294.       params.no_cache = true

  295.       if params.exclude_flags then

  296.         params.filter = gen_exclude_flags_filter(params.exclude_flags)

  297.       end

  298.       local urls = lua_util.extract_specific_urls(params)

  299.       if not urls[1] then

  300.         return nil

  301.       end

  302.       return urls,'userdata_list'

  303.     end,

  304.     ['description'] = [[Get most specific urls. Arguments are equal to the Lua API function]],

  305.     ['args_schema'] = {ts.shape{

  306.       limit = ts.number + ts.string / tonumber,

  307.       esld_limit = (ts.number + ts.string / tonumber):is_optional(),

  308.       exclude_flags = url_flags_ts,

  309.       flags = url_flags_ts,

  310.       flags_mode = ts.one_of{'explicit'}:is_optional(),

  311.       prefix = ts.string:is_optional(),

  312.       need_content = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  313.       need_emails = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  314.       need_images = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  315.       ignore_redirected = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  316.     }}

  317.   },

  318.   ['specific_urls_filter_map'] = {

  319.     ['get_value'] = function(task, args)

  320.       local map = maps[args[1]]

  321.       if not map then

  322.         lua_util.debugm(M, "invalid/unknown map: %s", args[1])

  323.       end

  324.       local params = args[2] or {}

  325.       params.task = task

  326.       params.no_cache = true

  327.       if params.exclude_flags then

  328.         params.filter = gen_exclude_flags_filter(params.exclude_flags)

  329.       end

  330.       local urls = lua_util.extract_specific_urls(params)

  331.       if not urls[1] then

  332.         return nil

  333.       end

  334.       return fun.filter(function(u) return map:get_key(tostring(u)) end, urls),'userdata_list'

  335.     end,

  336.     ['description'] = [[Get most specific urls, filtered by some map. Arguments are equal to the Lua API function]],

  337.     ['args_schema'] = {ts.string, ts.shape{

  338.       limit = ts.number + ts.string / tonumber,

  339.       esld_limit = (ts.number + ts.string / tonumber):is_optional(),

  340.       exclude_flags = url_flags_ts,

  341.       flags = url_flags_ts,

  342.       flags_mode = ts.one_of{'explicit'}:is_optional(),

  343.       prefix = ts.string:is_optional(),

  344.       need_content = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  345.       need_emails = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  346.       need_images = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  347.       ignore_redirected = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  348.     }}

  349.   },

  350.   -- URLs filtered by flags

  351.   ['urls_filtered'] = {

  352.     ['get_value'] = function(task, args)

  353.       local urls = task:get_urls_filtered(args[1], args[2])

  354.       if not urls[1] then

  355.         return nil

  356.       end

  357.       return urls,'userdata_list'

  358.     end,

  359.     ['description'] = [[Get list of all urls filtered by flags_include/exclude

  360. (see rspamd_task:get_urls_filtered for description)]],

  361.     ['args_schema'] = {ts.array_of{

  362.       url_flags_ts:is_optional(), url_flags_ts:is_optional()

  363.     }}

  364.   },

  365.   -- Get all emails

  366.   ['emails'] = {

  367.     ['get_value'] = function(task, args)

  368.       local urls = task:get_emails()

  369.       if not urls[1] then

  370.         return nil

  371.       end

  372.       if args[1] then

  373.         return fun.map(function(r) return r[args[1]](r) end, urls), 'string_list'

  374.       end

  375.       return urls,'userdata_list'

  376.     end,

  377.     ['description'] = [[Get list of all emails.

  378. If no arguments specified, returns list of url objects. Otherwise, calls a specific method,

  379. e.g. `get_user`]],

  380.   },

  381.   -- Get specific pool var. The first argument must be variable name,

  382.   -- the second argument is optional and defines the type (string by default)

  383.   ['pool_var'] = {

  384.     ['get_value'] = function(task, args)

  385.       local type = args[2] or 'string'

  386.       return task:get_mempool():get_variable(args[1], type),(type)

  387.     end,

  388.     ['description'] = [[Get specific pool var. The first argument must be variable name,

  389. the second argument is optional and defines the type (string by default)]],

  390.     ['args_schema'] = {ts.string, ts.string:is_optional()}

  391.   },

  392.   -- Get value of specific key from task cache

  393.   ['task_cache'] = {

  394.     ['get_value'] = function(task, args)

  395.       local val = task:cache_get(args[1])

  396.       if not val then

  397.         return

  398.       end

  399.       if type(val) == 'table' then

  400.         if not val[1] then

  401.           return

  402.         end

  403.         return val, 'string_list'

  404.       end

  405.       return val, 'string'

  406.     end,

  407.     ['description'] = [[Get value of specific key from task cache. The first argument must be

  408. the key name]],

  409.     ['args_schema'] = {ts.string}

  410.   },

  411.   -- Get specific HTTP request header. The first argument must be header name.

  412.   ['request_header'] = {

  413.     ['get_value'] = function(task, args)

  414.       local hdr = task:get_request_header(args[1])

  415.       if hdr then

  416.         return hdr,'string'

  417.       end

  418. 

  419.       return nil

  420.     end,

  421.     ['description'] = [[Get specific HTTP request header.

  422. The first argument must be header name.]],

  423.     ['args_schema'] = {ts.string}

  424.   },

  425.   -- Get task date, optionally formatted

  426.   ['time'] = {

  427.     ['get_value'] = function(task, args)

  428.       local what = args[1] or 'message'

  429.       local dt = task:get_date{format = what, gmt = true}

  430. 

  431.       if dt then

  432.         if args[2] then

  433.           -- Should be in format !xxx, as dt is in GMT

  434.           return os.date(args[2], dt),'string'

  435.         end

  436. 

  437.         return tostring(dt),'string'

  438.       end

  439. 

  440.       return nil

  441.     end,

  442.     ['description'] = [[Get task timestamp. The first argument is type:

  443.   - `connect`: connection timestamp (default)

  444.   - `message`: timestamp as defined by `Date` header

  445. 

  446.   The second argument is optional time format, see [os.date](http://pgl.yoyo.org/luai/i/os.date) description]],

  447.     ['args_schema'] = {ts.one_of{'connect', 'message'}:is_optional(),

  448.                        ts.string:is_optional()}

  449.   },

  450.   -- Get text words from a message

  451.   ['words'] = {

  452.     ['get_value'] = function(task, args)

  453.       local how = args[1] or 'stem'

  454.       local tp = task:get_text_parts()

  455. 

  456.       if tp then

  457.         local rtype = 'string_list'

  458.         if how == 'full' then

  459.           rtype = 'table_list'

  460.         end

  461. 

  462.         return lua_util.flatten(

  463.             fun.map(function(p)

  464.               return p:get_words(how)

  465.             end, tp)), rtype

  466.       end

  467. 

  468.       return nil

  469.     end,

  470.     ['description'] = [[Get words from text parts

  471.   - `stem`: stemmed words (default)

  472.   - `raw`: raw words

  473.   - `norm`: normalised words (lowercased)

  474.   - `full`: list of tables

  475.   ]],

  476.     ['args_schema'] = { ts.one_of { 'stem', 'raw', 'norm', 'full' }:is_optional()},

  477.   },

  478.   -- Get queue ID

  479.   ['queueid'] = {

  480.     ['get_value'] = function(task)

  481.       local queueid = task:get_queue_id()

  482.       if queueid then return queueid,'string' end

  483.       return nil

  484.     end,

  485.     ['description'] = [[Get queue ID]],

  486.   },

  487.   -- Get ID of the task being processed

  488.   ['uid'] = {

  489.     ['get_value'] = function(task)

  490.       local uid = task:get_uid()

  491.       if uid then return uid,'string' end

  492.       return nil

  493.     end,

  494.     ['description'] = [[Get ID of the task being processed]],

  495.   },

  496.   -- Get message ID of the task being processed

  497.   ['messageid'] = {

  498.     ['get_value'] = function(task)

  499.       local mid = task:get_message_id()

  500.       if mid then return mid,'string' end

  501.       return nil

  502.     end,

  503.     ['description'] = [[Get message ID]],

  504.   },

  505.   -- Get specific symbol

  506.   ['symbol'] = {

  507.     ['get_value'] = function(task, args)

  508.       local symbol = task:get_symbol(args[1], args[2])

  509.       if symbol then

  510.         return symbol[1],'table'

  511.       end

  512.     end,

  513.     ['description'] = 'Get specific symbol. The first argument must be the symbol name. ' ..

  514.       'The second argument is an optional shadow result name. ' ..

  515.       'Returns the symbol table. See task:get_symbol()',

  516.     ['args_schema'] = {ts.string, ts.string:is_optional()}

  517.   },

  518.   -- Get full scan result

  519.   ['scan_result'] = {

  520.     ['get_value'] = function(task, args)

  521.       local res = task:get_metric_result(args[1])

  522.       if res then

  523.         return res,'table'

  524.       end

  525.     end,

  526.     ['description'] = 'Get full scan result (either default or shadow if shadow result name is specified)' ..

  527.         'Returns the result table. See task:get_metric_result()',

  528.     ['args_schema'] = {ts.string:is_optional()}

  529.   },

  530.   -- Get list of metatokens as strings

  531.   ['metatokens'] = {

  532.     ['get_value'] = function(task)

  533.       local tokens = meta_functions.gen_metatokens(task)

  534.       if not tokens[1] then

  535.         return nil

  536.       end

  537.       local res = {}

  538.       for _, t in ipairs(tokens) do

  539.         table.insert(res, tostring(t))

  540.       end

  541.       return res, 'string_list'

  542.     end,

  543.     ['description'] = 'Get metatokens for a message as strings',

  544.   },

  545. }

  546. 

  547. return extractors