mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13429 Commits
28 Branches
Tree: 4582ebe807
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4582ebe807'
${ noResults }
rspamd/utils/cgp_rspamd.pl

cgp_rspamd.pl 8.6KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362 
  1. #!/usr/bin/env perl

  2. 

  3. use warnings;

  4. use strict;

  5. use JSON::XS;

  6. use AnyEvent;

  7. use AnyEvent::HTTP;

  8. use AnyEvent::IO;

  9. use EV;

  10. use Pod::Usage;

  11. use Getopt::Long;

  12. use File::stat;

  13. 

  14. my $rspamd_host     = "localhost:11333";

  15. my $man             = 0;

  16. my $help            = 0;

  17. my $local           = 0;

  18. my $header          = "X-Spam: yes";

  19. my $max_size        = 10 * 1024 * 1024;          # 10 MB

  20. my $request_timeout = 15;                        # 15 seconds by default

  21. my $reject_message  = "Spam message rejected";

  22. 

  23. GetOptions(

  24.   "host=s"           => \$rspamd_host,

  25.   "header=s"         => \$header,

  26.   "reject-message=s" => \$reject_message,

  27.   "max-size=i"       => \$max_size,

  28.   "timeout=f"        => \$request_timeout,

  29.   "help|?"           => \$help,

  30.   "man"              => \$man

  31. ) or pod2usage(2);

  32. 

  33. pod2usage(1) if $help;

  34. pod2usage( -exitval => 0, -verbose => 2 ) if $man;

  35. 

  36. my $main_domain = cgp_main_domain();

  37. my $scanned = 0;

  38. 

  39. # Turn off bufferization as required by CGP

  40. $| = 1;

  41. 

  42. sub cgp_main_domain {

  43.   if ( open(my $fh, 'Settings/Main.settings') ) {

  44.     while (<$fh>) {

  45.       if ( /^\s+DomainName\s+=\s+([^;]+);/ ) {

  46.         return $1;

  47.       }

  48.     }

  49.   }

  50. }

  51. 

  52. sub cgp_string {

  53.   my ($in) = @_;

  54. 

  55.   $in =~ s/\"/\\"/g;

  56.   $in =~ s/\n/\\n/gms;

  57.   $in =~ s/\r/\\r/mgs;

  58.   $in =~ s/\t/  /g;

  59. 

  60.   return "\"$in\"";

  61. }

  62. 

  63. sub rspamd_scan {

  64.   my ( $tag, $file ) = @_;

  65. 

  66.   my $http_callback = sub {

  67.     my ( $body, $hdr ) = @_;

  68. 

  69.     if ( $hdr && $hdr->{Status} =~ /^2/ ) {

  70.       my $js = eval('decode_json($body)');

  71.       $scanned++;

  72. 

  73.       if ( !$js ) {

  74.         print "* Rspamd: Bad response for $file: invalid JSON: parse error\n";

  75.         print "$tag FAILURE\n";

  76.       }

  77.       else {

  78.         my $def     = $js;

  79.         my $headers = "";

  80. 

  81.         if ( !$def ) {

  82.           print

  83. "* Rspamd: Bad response for $file: invalid JSON: default is missing\n";

  84.           print "$tag FAILURE\n";

  85.         }

  86.         else {

  87.           my $action = $def->{'action'};

  88.           my $id     = $js->{'message-id'};

  89. 

  90.           my $symbols = "";

  91.           while ( my ( $k, $s ) = each( %{$def->{'symbols'}}) ) {

  92.             $symbols .= sprintf "%s(%.2f);", $k, $s->{'score'};

  93.           }

  94. 

  95.           printf

  96. "* Rspamd: Scanned %s; id: <%s>; Score: %.2f / %.2f; Symbols: [%s]\n",

  97.             $file, $id, $def->{'score'}, $def->{'required_score'}, $symbols;

  98. 

  99.           if ( $js->{'dkim-signature'} ) {

  100.             $headers .= "DKIM-Signature: " . $js->{'dkim-signature'};

  101.           }

  102. 

  103.           if ( $js->{'milter'} ) {

  104.             my $block = $js->{'milter'};

  105. 

  106.             if ( $block->{'add_headers'} ) {

  107.               while ( my ( $h, $v ) = each( %{ $block->{'add_headers'} } ) ) {

  108.                 if (ref($v) eq 'HASH') {

  109.                   if ($headers eq "") {

  110.                     $headers .= "$h: $v->{value}";

  111.                   }

  112.                   else {

  113.                     $headers .= "\\e$h: $v->{value}";

  114.                   }

  115.                 }

  116.                 else {

  117.                   if ($headers eq "") {

  118.                     $headers .= "$h: $v";

  119.                   }

  120.                   else {

  121.                     $headers .= "\\e$h: $v";

  122.                   }

  123.                 }

  124.               }

  125.             }

  126.           }

  127. 

  128.           if ( $action eq 'reject' ) {

  129.             print "$tag DISCARD\n";

  130.             return;

  131.           }

  132.           elsif ( $action eq 'add header' || $action eq 'rewrite subject' ) {

  133.             if ( $headers eq "" ) {

  134.               $headers .= "$header";

  135.             }

  136.             else {

  137.               $headers .= "\\e$header";

  138.             }

  139.           }

  140.           elsif ( $action eq 'soft reject' ) {

  141.             print "$tag REJECT Try again later\n";

  142.             return;

  143.           }

  144. 

  145.           if ( $headers eq "" ) {

  146.             print "$tag OK\n";

  147.           }

  148.           else {

  149.             print "$tag ADDHEADER " . cgp_string($headers) . " OK\n";

  150.           }

  151.         }

  152.       }

  153.     }

  154.     else {

  155.       if ($hdr) {

  156.         print

  157. "* Rspamd: Bad response for $file: HTTP error: $hdr->{Status} $hdr->{Reason}\n";

  158.       }

  159.       else {

  160.         print "* Rspamd: Bad response for $file: IO error: $!\n";

  161.       }

  162.       print "$tag FAILURE\n";

  163.     }

  164.   };

  165. 

  166.   if ($local) {

  167. 

  168.     # Use file scan

  169.     # XXX: not implemented now due to CGP queue format

  170.     http_get(

  171.       "http://$rspamd_host/symbols?file=$file",

  172.       timeout => $request_timeout,

  173.       $http_callback

  174.     );

  175.   }

  176.   else {

  177.     my $sb = stat($file);

  178. 

  179.     if ( !$sb || $sb->size > $max_size ) {

  180.       if ($sb) {

  181.         print "* File $file is too large: " . $sb->size . "\n$tag FAILURE\n";

  182. 

  183.       }

  184.       else {

  185.         print "* Cannot stat $file: $!\n$tag FAILURE\n";

  186.       }

  187.       return;

  188.     }

  189.     aio_load(

  190.       $file,

  191.       sub {

  192.         my ($data) = @_;

  193. 

  194.         if ( !$data ) {

  195.           print "* Cannot open $file: $!\n$tag FAILURE\n";

  196.           return;

  197.         }

  198. 

  199.         # Parse CGP format

  200.         $data =~ s/^((?:[^\n]*\n)*?)\n(.*)$/$2/ms;

  201.         my @envelope = split /\n/, $1;

  202.         chomp(@envelope);

  203.         my $from;

  204.         my @rcpts;

  205.         my $ip;

  206.         my $user;

  207. 

  208.         foreach my $elt (@envelope) {

  209.           if ( $elt =~ /^P\s[^<]*(<[^>]*>).*$/ ) {

  210.             $from = $1;

  211.           }

  212.           elsif ( $elt =~ /^R\s[^<]*(<[^>]*>).*$/ ) {

  213.             push @rcpts, $1;

  214.           }

  215.           elsif ( $elt =~ /^S (?:<([^>]+)> )?(?:SMTP|HTTPU?|AIRSYNC|XIMSS) \[([0-9a-f.:]+)\]/ ) {

  216.             if ($1) {

  217.               $user = $1;

  218.             }

  219.             if ($2) {

  220.               $ip = $2;

  221.             }

  222.           }

  223.           elsif ( $elt =~ /^S (?:<([^>]+)> )?(?:DSN|GROUP|LIST|PBX|PIPE|RULE) \[0\.0\.0\.0\]/ ) {

  224.             if ($1) {

  225.               $user = $1;

  226.             }

  227.             $ip = '127.2.4.7';

  228.           }

  229.         }

  230. 

  231.         my $headers = {};

  232.         if ( $file =~ /\/([^\/.]+)\.msg$/ ) {

  233.           $headers->{'Queue-ID'} = $1;

  234.         }

  235.         if ($from) {

  236.           $headers->{From} = $from;

  237.         }

  238.         if ( scalar(@rcpts) > 0 ) {

  239. 

  240.           # XXX: Anyevent cannot parse headers with multiple values

  241.           $headers->{Rcpt} = join(',', @rcpts);

  242.         }

  243.         if ($ip) {

  244.           $headers->{IP} = $ip;

  245.         }

  246.         if ($user) {

  247.           $headers->{User} = $user;

  248.         }

  249.         if ($main_domain) {

  250.           $headers->{'MTA-Tag'} = $main_domain;

  251.         }

  252. 

  253.         http_post(

  254.           "http://$rspamd_host/checkv2", $data,

  255.           timeout => $request_timeout,

  256.           headers => $headers,

  257.           $http_callback

  258.         );

  259.       }

  260.     );

  261.   }

  262. }

  263. 

  264. # Show informational message

  265. print "* Rspamd CGP filter has been started\n";

  266. 

  267. my $w = AnyEvent->io(

  268.   fh   => \*STDIN,

  269.   poll => 'r',

  270.   cb   => sub {

  271.     chomp( my $input = <STDIN> );

  272. 

  273.     if ( $input =~ /^(\d+)\s+(\S+)(\s+(\S+)\s*)?$/ ) {

  274.       my $tag = $1;

  275.       my $cmd = $2;

  276. 

  277.       if ( $cmd eq "INTF" ) {

  278.         print "$input\n";

  279.       }

  280.       elsif ( $cmd eq "FILE" && $4 ) {

  281.         my $file = $4;

  282.         print "* Scanning file $file\n";

  283.         rspamd_scan $tag, $file;

  284.       }

  285.       elsif ( $cmd eq "QUIT" ) {

  286.         print "* Terminating after scanning of $scanned files\n";

  287.         print "$tag OK\n";

  288.         exit 0;

  289.       }

  290.       else {

  291.         print "* Unknown command $cmd\n";

  292.         print "$tag FAILURE\n";

  293.       }

  294.     }

  295.   }

  296. );

  297. 

  298. EV::run;

  299. 

  300. __END__

  301. 

  302. =head1 NAME

  303. 

  304. cgp_rspamd - implements Rspamd filter for CommunigatePro MTA

  305. 

  306. =head1 SYNOPSIS

  307. 

  308. cgp_rspamd [options]

  309. 

  310.  Options:

  311.    --host=hostport        Rspamd host to connect (localhost:11333 by default)

  312.    --header               Add specific header for a spam message ("X-Spam: yes" by default)

  313.    --reject-message       Rejection message for spam mail ("Spam message rejected" by default)

  314.    --timeout              Timeout to read response from Rspamd (15 seconds by default)

  315.    --max-size             Maximum size of message to scan (10 megabytes by default)

  316.    --help                 brief help message

  317.    --man                  full documentation

  318. 

  319. =head1 OPTIONS

  320. 

  321. =over 8

  322. 

  323. =item B<--host>

  324. 

  325. Specifies Rspamd host to use for scanning

  326. 

  327. =item B<--header>

  328. 

  329. Specifies the header that should be added when Rspamd action is B<add header>

  330. or B<rewrite subject>.

  331. 

  332. =item B<--reject-message>

  333. 

  334. Specifies the rejection message for spam.

  335. 

  336. =item B<--timeout>

  337. 

  338. Sets timeout in seconds for waiting Rspamd reply for a message.

  339. 

  340. =item B<--max-size>

  341. 

  342. Define the maximum messages size to be processed by Rspamd in bytes.

  343. 

  344. =item B<--help>

  345. 

  346. Print a brief help message and exits.

  347. 

  348. =item B<--man>

  349. 

  350. Prints the manual page and exits.

  351. 

  352. =back

  353. 

  354. =head1 DESCRIPTION

  355. 

  356. B<cgp_rspamd> is intended to scan messages processed with B<CommunigatePro> MTA

  357. on some Rspamd scanner. It reads standard input and parses CGP helpers

  358. protocol.  On scan requests, this filter can query Rspamd to process a message.

  359. B<cgp_rspamd> can tell CGP to add header or reject SPAM messages depending on

  360. Rspamd scan result.

  361. 

  362. =cut