mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16534 Commits
28 Branches
Tree: 41e28d1148
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '41e28d1148'
${ noResults }
rspamd/src/plugins/regexp.c

regexp.c 13KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. /***MODULE:regexp

  17.  * rspamd module that implements different regexp rules

  18.  */

  19. 

  20. 

  21. #include "config.h"

  22. #include "libmime/message.h"

  23. #include "expression.h"

  24. #include "mime_expressions.h"

  25. #include "libserver/maps/map.h"

  26. #include "lua/lua_common.h"

  27. 

  28. static const guint64 rspamd_regexp_cb_magic = 0xca9d9649fc3e2659ULL;

  29. 

  30. struct regexp_module_item {

  31. 	guint64 magic;

  32. 	struct rspamd_expression *expr;

  33. 	const gchar *symbol;

  34. 	struct ucl_lua_funcdata *lua_function;

  35. };

  36. 

  37. struct regexp_ctx {

  38. 	struct module_ctx ctx;

  39. 	gsize max_size;

  40. };

  41. 

  42. static void process_regexp_item (struct rspamd_task *task,

  43. 								 struct rspamd_symcache_item *item,

  44. 								 void *user_data);

  45. 

  46. 

  47. /* Initialization */

  48. gint regexp_module_init (struct rspamd_config *cfg, struct module_ctx **ctx);

  49. gint regexp_module_config (struct rspamd_config *cfg);

  50. gint regexp_module_reconfig (struct rspamd_config *cfg);

  51. 

  52. module_t regexp_module = {

  53. 		"regexp",

  54. 		regexp_module_init,

  55. 		regexp_module_config,

  56. 		regexp_module_reconfig,

  57. 		NULL,

  58. 		RSPAMD_MODULE_VER,

  59. 		(guint)-1,

  60. };

  61. 

  62. 

  63. static inline struct regexp_ctx *

  64. regexp_get_context (struct rspamd_config *cfg)

  65. {

  66. 	return (struct regexp_ctx *)g_ptr_array_index (cfg->c_modules,

  67. 			regexp_module.ctx_offset);

  68. }

  69. 

  70. /* Process regexp expression */

  71. static gboolean

  72. read_regexp_expression (rspamd_mempool_t * pool,

  73. 	struct regexp_module_item *chain,

  74. 	const gchar *symbol,

  75. 	const gchar *line,

  76. 	struct rspamd_mime_expr_ud *ud)

  77. {

  78. 	struct rspamd_expression *e = NULL;

  79. 	GError *err = NULL;

  80. 

  81. 	if (!rspamd_parse_expression (line, 0, &mime_expr_subr, ud, pool, &err,

  82. 			&e)) {

  83. 		msg_warn_pool ("%s = \"%s\" is invalid regexp expression: %e", symbol,

  84. 				line,

  85. 				err);

  86. 		g_error_free (err);

  87. 

  88. 		return FALSE;

  89. 	}

  90. 

  91. 	g_assert (e != NULL);

  92. 	chain->expr = e;

  93. 

  94. 	return TRUE;

  95. }

  96. 

  97. 

  98. /* Init function */

  99. gint

  100. regexp_module_init (struct rspamd_config *cfg, struct module_ctx **ctx)

  101. {

  102. 	struct regexp_ctx *regexp_module_ctx;

  103. 

  104. 	regexp_module_ctx = rspamd_mempool_alloc0 (cfg->cfg_pool,

  105. 			sizeof (*regexp_module_ctx));

  106. 

  107. 	*ctx = (struct module_ctx *)regexp_module_ctx;

  108. 

  109. 	rspamd_rcl_add_doc_by_path (cfg,

  110. 			NULL,

  111. 			"Regular expressions rules plugin",

  112. 			"regexp",

  113. 			UCL_OBJECT,

  114. 			NULL,

  115. 			0,

  116. 			NULL,

  117. 			0);

  118. 

  119. 	rspamd_rcl_add_doc_by_path (cfg,

  120. 			"regexp",

  121. 			"Maximum size of data chunk scanned with any regexp (further data is truncated)",

  122. 			"max_size",

  123. 			UCL_INT,

  124. 			NULL,

  125. 			0,

  126. 			NULL,

  127. 			0);

  128. 

  129. 	return 0;

  130. }

  131. 

  132. gint

  133. regexp_module_config (struct rspamd_config *cfg)

  134. {

  135. 	struct regexp_ctx *regexp_module_ctx = regexp_get_context (cfg);

  136. 	struct regexp_module_item *cur_item = NULL;

  137. 	const ucl_object_t *sec, *value, *elt;

  138. 	ucl_object_iter_t it = NULL;

  139. 	gint res = TRUE, nre = 0, nlua = 0, nshots = cfg->default_max_shots;

  140. 

  141. 	if (!rspamd_config_is_module_enabled (cfg, "regexp")) {

  142. 		return TRUE;

  143. 	}

  144. 

  145. 	sec = ucl_object_lookup (cfg->rcl_obj, "regexp");

  146. 	if (sec == NULL) {

  147. 		msg_err_config ("regexp module enabled, but no rules are defined");

  148. 		return TRUE;

  149. 	}

  150. 

  151. 	regexp_module_ctx->max_size = 0;

  152. 

  153. 	while ((value = ucl_object_iterate (sec, &it, true)) != NULL) {

  154. 		if (g_ascii_strncasecmp (ucl_object_key (value), "max_size",

  155. 			sizeof ("max_size") - 1) == 0) {

  156. 			regexp_module_ctx->max_size = ucl_obj_toint (value);

  157. 			rspamd_re_cache_set_limit (cfg->re_cache, regexp_module_ctx->max_size);

  158. 		}

  159. 		else if (g_ascii_strncasecmp (ucl_object_key (value), "max_threads",

  160. 			sizeof ("max_threads") - 1) == 0) {

  161. 			msg_warn_config ("regexp module is now single threaded, max_threads is ignored");

  162. 		}

  163. 		else if (value->type == UCL_STRING) {

  164. 			struct rspamd_mime_expr_ud ud;

  165. 

  166. 			cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  167. 					sizeof (struct regexp_module_item));

  168. 			cur_item->symbol = ucl_object_key (value);

  169. 			cur_item->magic = rspamd_regexp_cb_magic;

  170. 

  171. 			ud.conf_obj = NULL;

  172. 			ud.cfg = cfg;

  173. 

  174. 			if (!read_regexp_expression (cfg->cfg_pool,

  175. 					cur_item, ucl_object_key (value),

  176. 					ucl_obj_tostring (value), &ud)) {

  177. 				res = FALSE;

  178. 			}

  179. 			else {

  180. 				rspamd_symcache_add_symbol (cfg->cache,

  181. 						cur_item->symbol,

  182. 						0,

  183. 						process_regexp_item,

  184. 						cur_item,

  185. 						SYMBOL_TYPE_NORMAL, -1);

  186. 				nre ++;

  187. 			}

  188. 		}

  189. 		else if (value->type == UCL_USERDATA) {

  190. 			/* Just a lua function */

  191. 			cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  192. 					sizeof (struct regexp_module_item));

  193. 			cur_item->magic = rspamd_regexp_cb_magic;

  194. 			cur_item->symbol = ucl_object_key (value);

  195. 			cur_item->lua_function = ucl_object_toclosure (value);

  196. 

  197. 			rspamd_symcache_add_symbol (cfg->cache,

  198. 					cur_item->symbol,

  199. 					0,

  200. 					process_regexp_item,

  201. 					cur_item,

  202. 					SYMBOL_TYPE_NORMAL, -1);

  203. 			nlua ++;

  204. 		}

  205. 		else if (value->type == UCL_OBJECT) {

  206. 			const gchar *description = NULL, *group = NULL;

  207. 			gdouble score = 0.0;

  208. 			guint flags = 0, priority = 0;

  209. 			gboolean is_lua = FALSE, valid_expression = TRUE;

  210. 			struct rspamd_mime_expr_ud ud;

  211. 

  212. 			/* We have some lua table, extract its arguments */

  213. 			elt = ucl_object_lookup (value, "callback");

  214. 

  215. 			if (elt == NULL || elt->type != UCL_USERDATA) {

  216. 

  217. 				/* Try plain regexp expression */

  218. 				elt = ucl_object_lookup_any (value, "regexp", "re", NULL);

  219. 

  220. 				if (elt != NULL && ucl_object_type (elt) == UCL_STRING) {

  221. 					cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  222. 							sizeof (struct regexp_module_item));

  223. 					cur_item->symbol = ucl_object_key (value);

  224. 					cur_item->magic = rspamd_regexp_cb_magic;

  225. 					ud.cfg = cfg;

  226. 					ud.conf_obj = value;

  227. 

  228. 					if (!read_regexp_expression (cfg->cfg_pool,

  229. 							cur_item, ucl_object_key (value),

  230. 							ucl_obj_tostring (elt), &ud)) {

  231. 						res = FALSE;

  232. 					}

  233. 					else {

  234. 						valid_expression = TRUE;

  235. 						nre ++;

  236. 					}

  237. 				}

  238. 				else {

  239. 					msg_err_config (

  240. 							"no callback/expression defined for regexp symbol: "

  241. 									"%s", ucl_object_key (value));

  242. 				}

  243. 			}

  244. 			else {

  245. 				is_lua = TRUE;

  246. 				nlua ++;

  247. 				cur_item = rspamd_mempool_alloc0 (

  248. 						cfg->cfg_pool,

  249. 						sizeof (struct regexp_module_item));

  250. 				cur_item->magic = rspamd_regexp_cb_magic;

  251. 				cur_item->symbol = ucl_object_key (value);

  252. 				cur_item->lua_function = ucl_object_toclosure (value);

  253. 			}

  254. 

  255. 			if (cur_item && (is_lua || valid_expression)) {

  256. 

  257. 				flags = SYMBOL_TYPE_NORMAL;

  258. 				elt = ucl_object_lookup (value, "mime_only");

  259. 

  260. 				if (elt) {

  261. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  262. 						msg_err_config (

  263. 								"mime_only attribute is not boolean for symbol: '%s'",

  264. 								cur_item->symbol);

  265. 

  266. 						res = FALSE;

  267. 					}

  268. 					else {

  269. 						if (ucl_object_toboolean (elt)) {

  270. 							flags |= SYMBOL_TYPE_MIME_ONLY;

  271. 						}

  272. 					}

  273. 				}

  274. 

  275. 				rspamd_symcache_add_symbol (cfg->cache,

  276. 						cur_item->symbol,

  277. 						0,

  278. 						process_regexp_item,

  279. 						cur_item,

  280. 						flags, -1);

  281. 

  282. 				/* Reset flags */

  283. 				flags = 0;

  284. 

  285. 				elt = ucl_object_lookup (value, "condition");

  286. 

  287. 				if (elt != NULL && ucl_object_type (elt) == UCL_USERDATA) {

  288. 					struct ucl_lua_funcdata *conddata;

  289. 

  290. 					g_assert (cur_item->symbol != NULL);

  291. 					conddata = ucl_object_toclosure (elt);

  292. 					rspamd_symcache_add_condition_delayed (cfg->cache,

  293. 							cur_item->symbol,

  294. 							conddata->L, conddata->idx);

  295. 				}

  296. 

  297. 				elt = ucl_object_lookup (value, "description");

  298. 

  299. 				if (elt) {

  300. 					description = ucl_object_tostring (elt);

  301. 				}

  302. 

  303. 				elt = ucl_object_lookup (value, "group");

  304. 

  305. 				if (elt) {

  306. 					group = ucl_object_tostring (elt);

  307. 				}

  308. 

  309. 				elt = ucl_object_lookup (value, "score");

  310. 

  311. 				if (elt) {

  312. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  313. 						msg_err_config (

  314. 								"score attribute is not numeric for symbol: '%s'",

  315. 								cur_item->symbol);

  316. 

  317. 						res = FALSE;

  318. 					}

  319. 					else {

  320. 						score = ucl_object_todouble (elt);

  321. 					}

  322. 				}

  323. 

  324. 				elt = ucl_object_lookup (value, "one_shot");

  325. 

  326. 				if (elt) {

  327. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  328. 						msg_err_config (

  329. 								"one_shot attribute is not boolean for symbol: '%s'",

  330. 								cur_item->symbol);

  331. 

  332. 						res = FALSE;

  333. 					}

  334. 					else {

  335. 						if (ucl_object_toboolean (elt)) {

  336. 							nshots = 1;

  337. 						}

  338. 					}

  339. 				}

  340. 

  341. 				if ((elt = ucl_object_lookup (value, "any_shot")) != NULL) {

  342. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  343. 						msg_err_config (

  344. 								"any_shot attribute is not boolean for symbol: '%s'",

  345. 								cur_item->symbol);

  346. 

  347. 						res = FALSE;

  348. 					}

  349. 					else {

  350. 						if (ucl_object_toboolean (elt)) {

  351. 							nshots = -1;

  352. 						}

  353. 					}

  354. 				}

  355. 

  356. 				if ((elt = ucl_object_lookup (value, "nshots")) != NULL) {

  357. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  358. 						msg_err_config (

  359. 								"nshots attribute is not numeric for symbol: '%s'",

  360. 								cur_item->symbol);

  361. 

  362. 						res = FALSE;

  363. 					}

  364. 					else {

  365. 						nshots = ucl_object_toint (elt);

  366. 					}

  367. 				}

  368. 

  369. 				elt = ucl_object_lookup (value, "one_param");

  370. 

  371. 				if (elt) {

  372. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  373. 						msg_err_config (

  374. 								"one_param attribute is not boolean for symbol: '%s'",

  375. 								cur_item->symbol);

  376. 

  377. 						res = FALSE;

  378. 					}

  379. 					else {

  380. 						if (ucl_object_toboolean (elt)) {

  381. 							flags |= RSPAMD_SYMBOL_FLAG_ONEPARAM;

  382. 						}

  383. 					}

  384. 				}

  385. 

  386. 				elt = ucl_object_lookup (value, "priority");

  387. 

  388. 				if (elt) {

  389. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  390. 						msg_err_config (

  391. 								"priority attribute is not numeric for symbol: '%s'",

  392. 								cur_item->symbol);

  393. 

  394. 						res = FALSE;

  395. 					}

  396. 					else {

  397. 						priority = ucl_object_toint (elt);

  398. 					}

  399. 				}

  400. 				else {

  401. 					priority = 0;

  402. 				}

  403. 

  404. 				rspamd_config_add_symbol (cfg, cur_item->symbol,

  405. 						score, description, group, flags, priority, nshots);

  406. 

  407. 				elt = ucl_object_lookup (value, "groups");

  408. 

  409. 				if (elt) {

  410. 					ucl_object_iter_t gr_it;

  411. 					const ucl_object_t *cur_gr;

  412. 

  413. 					gr_it = ucl_object_iterate_new (elt);

  414. 

  415. 					while ((cur_gr = ucl_object_iterate_safe (gr_it, true)) != NULL) {

  416. 						rspamd_config_add_symbol_group (cfg, cur_item->symbol,

  417. 								ucl_object_tostring (cur_gr));

  418. 					}

  419. 

  420. 					ucl_object_iterate_free (gr_it);

  421. 				}

  422. 			}

  423. 		}

  424. 		else {

  425. 			msg_warn_config ("unknown type of attribute %s for regexp module",

  426. 				ucl_object_key (value));

  427. 		}

  428. 	}

  429. 

  430. 	msg_info_config ("init internal regexp module, %d regexp rules and %d "

  431. 			"lua rules are loaded", nre, nlua);

  432. 

  433. 	return res;

  434. }

  435. 

  436. gint

  437. regexp_module_reconfig (struct rspamd_config *cfg)

  438. {

  439. 	return regexp_module_config (cfg);

  440. }

  441. 

  442. static gboolean

  443. rspamd_lua_call_expression_func (struct ucl_lua_funcdata *lua_data,

  444. 		struct rspamd_task *task,

  445. 		GArray *args, gdouble *res,

  446. 		const gchar *symbol)

  447. {

  448. 	lua_State *L = lua_data->L;

  449. 	struct rspamd_task **ptask;

  450. 	struct expression_argument *arg;

  451. 	gint pop = 0, i, nargs = 0;

  452. 

  453. 	lua_rawgeti (L, LUA_REGISTRYINDEX, lua_data->idx);

  454. 	/* Now we got function in top of stack */

  455. 	ptask = lua_newuserdata (L, sizeof(struct rspamd_task *));

  456. 	rspamd_lua_setclass (L, "rspamd{task}", -1);

  457. 	*ptask = task;

  458. 

  459. 	/* Now push all arguments */

  460. 	if (args) {

  461. 		for (i = 0; i < (gint)args->len; i ++) {

  462. 			arg = &g_array_index (args, struct expression_argument, i);

  463. 			if (arg) {

  464. 				switch (arg->type) {

  465. 				case EXPRESSION_ARGUMENT_NORMAL:

  466. 					lua_pushstring (L, (const gchar *) arg->data);

  467. 					break;

  468. 				case EXPRESSION_ARGUMENT_BOOL:

  469. 					lua_pushboolean (L, (gboolean) GPOINTER_TO_SIZE(arg->data));

  470. 					break;

  471. 				default:

  472. 					msg_err_task ("%s: cannot pass custom params to lua function",

  473. 							symbol);

  474. 					return FALSE;

  475. 				}

  476. 			}

  477. 		}

  478. 		nargs = args->len;

  479. 	}

  480. 

  481. 	if (lua_pcall (L, nargs + 1, 1, 0) != 0) {

  482. 		msg_info_task ("%s: call to lua function failed: %s", symbol,

  483. 				lua_tostring (L, -1));

  484. 		lua_pop (L, 1);

  485. 

  486. 		return FALSE;

  487. 	}

  488. 

  489. 	pop++;

  490. 

  491. 	if (lua_type (L, -1) == LUA_TNUMBER) {

  492. 		*res = lua_tonumber (L, -1);

  493. 	}

  494. 	else if (lua_type (L, -1) == LUA_TBOOLEAN) {

  495. 		*res = lua_toboolean (L, -1);

  496. 	}

  497. 	else {

  498. 		msg_info_task ("%s: lua function must return a boolean", symbol);

  499. 		*res = FALSE;

  500. 	}

  501. 

  502. 	lua_pop (L, pop);

  503. 

  504. 	return TRUE;

  505. }

  506. 

  507. 

  508. static void

  509. process_regexp_item (struct rspamd_task *task,

  510. 		struct rspamd_symcache_item *symcache_item,

  511. 		void *user_data)

  512. {

  513. 	struct regexp_module_item *item = user_data;

  514. 	gdouble res = FALSE;

  515. 

  516. 	/* Non-threaded version */

  517. 	if (item->lua_function) {

  518. 		/* Just call function */

  519. 		res = FALSE;

  520. 		if (!rspamd_lua_call_expression_func (item->lua_function, task, NULL,

  521. 				&res, item->symbol)) {

  522. 			msg_err_task ("error occurred when checking symbol %s",

  523. 					item->symbol);

  524. 		}

  525. 	}

  526. 	else {

  527. 		/* Process expression */

  528. 		if (item->expr) {

  529. 			res = rspamd_process_expression (item->expr, 0, task);

  530. 		}

  531. 		else {

  532. 			msg_warn_task ("FIXME: %s symbol is broken with new expressions",

  533. 					item->symbol);

  534. 		}

  535. 	}

  536. 

  537. 	if (res != 0) {

  538. 		rspamd_task_insert_result (task, item->symbol, res, NULL);

  539. 	}

  540. 

  541. 	rspamd_symcache_finalize_item (task, symcache_item);

  542. }