mirrors
/
rspamd
의 미러 https://github.com/vstakhov/rspamd.git
보기 1
좋아요 0
포크 0
코드 이슈 0 릴리즈 159 위키 Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21266 커밋
29 브랜치
트리: 90b73439d2
브랜치 태그
${ item.name }
Create branch ${ searchTerm }
from '90b73439d2'
${ noResults }
rspamd/lualib/lua_selectors/extractors.lua

extractors.lua 17KB
Raw Blame 히스토리

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574 
  1. --[[

  2. Copyright (c) 2022, Vsevolod Stakhov <vsevolod@rspamd.com>

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");

  5. you may not use this file except in compliance with the License.

  6. You may obtain a copy of the License at

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0

  9. 

  10. Unless required by applicable law or agreed to in writing, software

  11. distributed under the License is distributed on an "AS IS" BASIS,

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13. See the License for the specific language governing permissions and

  14. limitations under the License.

  15. ]]--

  16. 

  17. local fun = require 'fun'

  18. local meta_functions = require "lua_meta"

  19. local lua_util = require "lua_util"

  20. local rspamd_util = require "rspamd_util"

  21. local rspamd_url = require "rspamd_url"

  22. local common = require "lua_selectors/common"

  23. local ts = require("tableshape").types

  24. local maps = require "lua_selectors/maps"

  25. local E = {}

  26. local M = "selectors"

  27. 

  28. local HOSTNAME = rspamd_util.get_hostname()

  29. 

  30. local url_flags_ts = ts.array_of(ts.one_of(lua_util.keys(rspamd_url.flags))):is_optional()

  31. 

  32. local function gen_exclude_flags_filter(exclude_flags)

  33.   return function(u)

  34.     local got_flags = u:get_flags()

  35.     for _, flag in ipairs(exclude_flags) do

  36.       if got_flags[flag] then

  37.         return false

  38.       end

  39.     end

  40.     return true

  41.   end

  42. end

  43. 

  44. local extractors = {

  45.   -- Plain id function

  46.   ['id'] = {

  47.     ['get_value'] = function(_, args)

  48.       if args[1] then

  49.         return args[1], 'string'

  50.       end

  51. 

  52.       return '', 'string'

  53.     end,

  54.     ['description'] = [[Return value from function's argument or an empty string,

  55. For example, `id('Something')` returns a string 'Something']],

  56.     ['args_schema'] = { ts.string:is_optional() }

  57.   },

  58.   -- Similar but for making lists

  59.   ['list'] = {

  60.     ['get_value'] = function(_, args)

  61.       if args[1] then

  62.         return fun.map(tostring, args), 'string_list'

  63.       end

  64. 

  65.       return {}, 'string_list'

  66.     end,

  67.     ['description'] = [[Return a list from function's arguments or an empty list,

  68. For example, `list('foo', 'bar')` returns a list {'foo', 'bar'}]],

  69.   },

  70.   -- Get source IP address

  71.   ['ip'] = {

  72.     ['get_value'] = function(task)

  73.       local ip = task:get_ip()

  74.       if ip and ip:is_valid() then

  75.         return ip, 'userdata'

  76.       end

  77.       return nil

  78.     end,

  79.     ['description'] = [[Get source IP address]],

  80.   },

  81.   -- Get MIME from

  82.   ['from'] = {

  83.     ['get_value'] = function(task, args)

  84.       local from

  85.       if type(args) == 'table' then

  86.         from = task:get_from(args)

  87.       else

  88.         from = task:get_from(0)

  89.       end

  90.       if ((from or E)[1] or E).addr then

  91.         return from[1], 'table'

  92.       end

  93.       return nil

  94.     end,

  95.     ['description'] = [[Get MIME or SMTP from (e.g. `from('smtp')` or `from('mime')`,

  96. uses any type by default)]],

  97.   },

  98.   ['rcpts'] = {

  99.     ['get_value'] = function(task, args)

  100.       local rcpts

  101.       if type(args) == 'table' then

  102.         rcpts = task:get_recipients(args)

  103.       else

  104.         rcpts = task:get_recipients(0)

  105.       end

  106.       if ((rcpts or E)[1] or E).addr then

  107.         return rcpts, 'table_list'

  108.       end

  109.       return nil

  110.     end,

  111.     ['description'] = [[Get MIME or SMTP rcpts (e.g. `rcpts('smtp')` or `rcpts('mime')`,

  112. uses any type by default)]],

  113.   },

  114.   -- Get country (ASN module must be executed first)

  115.   ['country'] = {

  116.     ['get_value'] = function(task)

  117.       local country = task:get_mempool():get_variable('country')

  118.       if not country then

  119.         return nil

  120.       else

  121.         return country, 'string'

  122.       end

  123.     end,

  124.     ['description'] = [[Get country (ASN module must be executed first)]],

  125.   },

  126.   -- Get ASN number

  127.   ['asn'] = {

  128.     ['type'] = 'string',

  129.     ['get_value'] = function(task)

  130.       local asn = task:get_mempool():get_variable('asn')

  131.       if not asn then

  132.         return nil

  133.       else

  134.         return asn, 'string'

  135.       end

  136.     end,

  137.     ['description'] = [[Get AS number (ASN module must be executed first)]],

  138.   },

  139.   -- Get authenticated username

  140.   ['user'] = {

  141.     ['get_value'] = function(task)

  142.       local auser = task:get_user()

  143.       if not auser then

  144.         return nil

  145.       else

  146.         return auser, 'string'

  147.       end

  148.     end,

  149.     ['description'] = 'Get authenticated user name',

  150.   },

  151.   -- Get principal recipient

  152.   ['to'] = {

  153.     ['get_value'] = function(task)

  154.       return task:get_principal_recipient(), 'string'

  155.     end,

  156.     ['description'] = 'Get principal recipient',

  157.   },

  158.   -- Get content digest

  159.   ['digest'] = {

  160.     ['get_value'] = function(task)

  161.       return task:get_digest(), 'string'

  162.     end,

  163.     ['description'] = 'Get content digest',

  164.   },

  165.   -- Get list of all attachments digests

  166.   ['attachments'] = {

  167.     ['get_value'] = function(task, args)

  168.       local parts = task:get_parts() or E

  169.       local digests = {}

  170.       for i, p in ipairs(parts) do

  171.         if p:is_attachment() then

  172.           table.insert(digests, common.get_cached_or_raw_digest(task, i, p, args))

  173.         end

  174.       end

  175. 

  176.       if #digests > 0 then

  177.         return digests, 'string_list'

  178.       end

  179. 

  180.       return nil

  181.     end,

  182.     ['description'] = [[Get list of all attachments digests.

  183. The first optional argument is encoding (`hex`, `base32` (and forms `bleach32`, `rbase32`), `base64`),

  184. the second optional argument is optional hash type (`blake2`, `sha256`, `sha1`, `sha512`, `md5`)]],

  185.     ['args_schema'] = common.digest_schema()

  186. 

  187.   },

  188.   -- Get all attachments files

  189.   ['files'] = {

  190.     ['get_value'] = function(task)

  191.       local parts = task:get_parts() or E

  192.       local files = {}

  193. 

  194.       for _, p in ipairs(parts) do

  195.         local fname = p:get_filename()

  196.         if fname then

  197.           table.insert(files, fname)

  198.         end

  199.       end

  200. 

  201.       if #files > 0 then

  202.         return files, 'string_list'

  203.       end

  204. 

  205.       return nil

  206.     end,

  207.     ['description'] = 'Get all attachments files',

  208.   },

  209.   -- Get languages for text parts

  210.   ['languages'] = {

  211.     ['get_value'] = function(task)

  212.       local text_parts = task:get_text_parts() or E

  213.       local languages = {}

  214. 

  215.       for _, p in ipairs(text_parts) do

  216.         local lang = p:get_language()

  217.         if lang then

  218.           table.insert(languages, lang)

  219.         end

  220.       end

  221. 

  222.       if #languages > 0 then

  223.         return languages, 'string_list'

  224.       end

  225. 

  226.       return nil

  227.     end,

  228.     ['description'] = 'Get languages for text parts',

  229.   },

  230.   -- Get helo value

  231.   ['helo'] = {

  232.     ['get_value'] = function(task)

  233.       return task:get_helo(), 'string'

  234.     end,

  235.     ['description'] = 'Get helo value',

  236.   },

  237.   -- Get header with the name that is expected as an argument. Returns list of

  238.   -- headers with this name

  239.   ['header'] = {

  240.     ['get_value'] = function(task, args)

  241.       local strong = false

  242.       if args[2] then

  243.         if args[2]:match('strong') then

  244.           strong = true

  245.         end

  246. 

  247.         if args[2]:match('full') then

  248.           return task:get_header_full(args[1], strong), 'table_list'

  249.         end

  250. 

  251.         return task:get_header(args[1], strong), 'string'

  252.       else

  253.         return task:get_header(args[1]), 'string'

  254.       end

  255.     end,

  256.     ['description'] = [[Get header with the name that is expected as an argument.

  257. The optional second argument accepts list of flags:

  258.   - `full`: returns all headers with this name with all data (like task:get_header_full())

  259.   - `strong`: use case sensitive match when matching header's name]],

  260.     ['args_schema'] = { ts.string,

  261.                         (ts.pattern("strong") + ts.pattern("full")):is_optional() }

  262.   },

  263.   -- Get list of received headers (returns list of tables)

  264.   ['received'] = {

  265.     ['get_value'] = function(task, args)

  266.       local rh = task:get_received_headers()

  267.       if not rh[1] then

  268.         return nil

  269.       end

  270.       if args[1] then

  271.         return fun.map(function(r)

  272.           return r[args[1]]

  273.         end, rh), 'string_list'

  274.       end

  275. 

  276.       return rh, 'table_list'

  277.     end,

  278.     ['description'] = [[Get list of received headers.

  279. If no arguments specified, returns list of tables. Otherwise, selects a specific element,

  280. e.g. `by_hostname`]],

  281.   },

  282.   -- Get all urls

  283.   ['urls'] = {

  284.     ['get_value'] = function(task, args)

  285.       local urls = task:get_urls()

  286.       if not urls[1] then

  287.         return nil

  288.       end

  289.       if args[1] then

  290.         return fun.map(function(r)

  291.           return r[args[1]](r)

  292.         end, urls), 'string_list'

  293.       end

  294.       return urls, 'userdata_list'

  295.     end,

  296.     ['description'] = [[Get list of all urls.

  297. If no arguments specified, returns list of url objects. Otherwise, calls a specific method,

  298. e.g. `get_tld`]],

  299.   },

  300.   -- Get specific urls

  301.   ['specific_urls'] = {

  302.     ['get_value'] = function(task, args)

  303.       local params = args[1] or {}

  304.       params.task = task

  305.       params.no_cache = true

  306.       if params.exclude_flags then

  307.         params.filter = gen_exclude_flags_filter(params.exclude_flags)

  308.       end

  309.       local urls = lua_util.extract_specific_urls(params)

  310.       if not urls[1] then

  311.         return nil

  312.       end

  313.       return urls, 'userdata_list'

  314.     end,

  315.     ['description'] = [[Get most specific urls. Arguments are equal to the Lua API function]],

  316.     ['args_schema'] = { ts.shape {

  317.       limit = ts.number + ts.string / tonumber,

  318.       esld_limit = (ts.number + ts.string / tonumber):is_optional(),

  319.       exclude_flags = url_flags_ts,

  320.       flags = url_flags_ts,

  321.       flags_mode = ts.one_of { 'explicit' }:is_optional(),

  322.       prefix = ts.string:is_optional(),

  323.       need_content = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  324.       need_emails = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  325.       need_images = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  326.       ignore_redirected = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  327.     } }

  328.   },

  329.   ['specific_urls_filter_map'] = {

  330.     ['get_value'] = function(task, args)

  331.       local map = maps[args[1]]

  332.       if not map then

  333.         lua_util.debugm(M, "invalid/unknown map: %s", args[1])

  334.       end

  335.       local params = args[2] or {}

  336.       params.task = task

  337.       params.no_cache = true

  338.       if params.exclude_flags then

  339.         params.filter = gen_exclude_flags_filter(params.exclude_flags)

  340.       end

  341.       local urls = lua_util.extract_specific_urls(params)

  342.       if not urls[1] then

  343.         return nil

  344.       end

  345.       return fun.filter(function(u)

  346.         return map:get_key(tostring(u))

  347.       end, urls), 'userdata_list'

  348.     end,

  349.     ['description'] = [[Get most specific urls, filtered by some map. Arguments are equal to the Lua API function]],

  350.     ['args_schema'] = { ts.string, ts.shape {

  351.       limit = ts.number + ts.string / tonumber,

  352.       esld_limit = (ts.number + ts.string / tonumber):is_optional(),

  353.       exclude_flags = url_flags_ts,

  354.       flags = url_flags_ts,

  355.       flags_mode = ts.one_of { 'explicit' }:is_optional(),

  356.       prefix = ts.string:is_optional(),

  357.       need_content = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  358.       need_emails = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  359.       need_images = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  360.       ignore_redirected = (ts.boolean + ts.string / lua_util.toboolean):is_optional(),

  361.     } }

  362.   },

  363.   -- URLs filtered by flags

  364.   ['urls_filtered'] = {

  365.     ['get_value'] = function(task, args)

  366.       local urls = task:get_urls_filtered(args[1], args[2])

  367.       if not urls[1] then

  368.         return nil

  369.       end

  370.       return urls, 'userdata_list'

  371.     end,

  372.     ['description'] = [[Get list of all urls filtered by flags_include/exclude

  373. (see rspamd_task:get_urls_filtered for description)]],

  374.     ['args_schema'] = { ts.array_of {

  375.       url_flags_ts:is_optional(), url_flags_ts:is_optional()

  376.     } }

  377.   },

  378.   -- Get all emails

  379.   ['emails'] = {

  380.     ['get_value'] = function(task, args)

  381.       local urls = task:get_emails()

  382.       if not urls[1] then

  383.         return nil

  384.       end

  385.       if args[1] then

  386.         return fun.map(function(r)

  387.           return r[args[1]](r)

  388.         end, urls), 'string_list'

  389.       end

  390.       return urls, 'userdata_list'

  391.     end,

  392.     ['description'] = [[Get list of all emails.

  393. If no arguments specified, returns list of url objects. Otherwise, calls a specific method,

  394. e.g. `get_user`]],

  395.   },

  396.   -- Get specific pool var. The first argument must be variable name,

  397.   -- the second argument is optional and defines the type (string by default)

  398.   ['pool_var'] = {

  399.     ['get_value'] = function(task, args)

  400.       local type = args[2] or 'string'

  401.       return task:get_mempool():get_variable(args[1], type), (type)

  402.     end,

  403.     ['description'] = [[Get specific pool var. The first argument must be variable name,

  404. the second argument is optional and defines the type (string by default)]],

  405.     ['args_schema'] = { ts.string, ts.string:is_optional() }

  406.   },

  407.   -- Get value of specific key from task cache

  408.   ['task_cache'] = {

  409.     ['get_value'] = function(task, args)

  410.       local val = task:cache_get(args[1])

  411.       if not val then

  412.         return

  413.       end

  414.       if type(val) == 'table' then

  415.         if not val[1] then

  416.           return

  417.         end

  418.         return val, 'string_list'

  419.       end

  420.       return val, 'string'

  421.     end,

  422.     ['description'] = [[Get value of specific key from task cache. The first argument must be

  423. the key name]],

  424.     ['args_schema'] = { ts.string }

  425.   },

  426.   -- Get specific HTTP request header. The first argument must be header name.

  427.   ['request_header'] = {

  428.     ['get_value'] = function(task, args)

  429.       local hdr = task:get_request_header(args[1])

  430.       if hdr then

  431.         return hdr, 'string'

  432.       end

  433. 

  434.       return nil

  435.     end,

  436.     ['description'] = [[Get specific HTTP request header.

  437. The first argument must be header name.]],

  438.     ['args_schema'] = { ts.string }

  439.   },

  440.   -- Get task date, optionally formatted

  441.   ['time'] = {

  442.     ['get_value'] = function(task, args)

  443.       local what = args[1] or 'message'

  444.       local dt = task:get_date { format = what, gmt = true }

  445. 

  446.       if dt then

  447.         if args[2] then

  448.           -- Should be in format !xxx, as dt is in GMT

  449.           return os.date(args[2], dt), 'string'

  450.         end

  451. 

  452.         return tostring(dt), 'string'

  453.       end

  454. 

  455.       return nil

  456.     end,

  457.     ['description'] = [[Get task timestamp. The first argument is type:

  458.   - `connect`: connection timestamp (default)

  459.   - `message`: timestamp as defined by `Date` header

  460. 

  461.   The second argument is optional time format, see [os.date](http://pgl.yoyo.org/luai/i/os.date) description]],

  462.     ['args_schema'] = { ts.one_of { 'connect', 'message' }:is_optional(),

  463.                         ts.string:is_optional() }

  464.   },

  465.   -- Get text words from a message

  466.   ['words'] = {

  467.     ['get_value'] = function(task, args)

  468.       local how = args[1] or 'stem'

  469.       local tp = task:get_text_parts()

  470. 

  471.       if tp then

  472.         local rtype = 'string_list'

  473.         if how == 'full' then

  474.           rtype = 'table_list'

  475.         end

  476. 

  477.         return lua_util.flatten(

  478.             fun.map(function(p)

  479.               return p:get_words(how)

  480.             end, tp)), rtype

  481.       end

  482. 

  483.       return nil

  484.     end,

  485.     ['description'] = [[Get words from text parts

  486.   - `stem`: stemmed words (default)

  487.   - `raw`: raw words

  488.   - `norm`: normalised words (lowercased)

  489.   - `full`: list of tables

  490.   ]],

  491.     ['args_schema'] = { ts.one_of { 'stem', 'raw', 'norm', 'full' }:is_optional() },

  492.   },

  493.   -- Get queue ID

  494.   ['queueid'] = {

  495.     ['get_value'] = function(task)

  496.       local queueid = task:get_queue_id()

  497.       if queueid then

  498.         return queueid, 'string'

  499.       end

  500.       return nil

  501.     end,

  502.     ['description'] = [[Get queue ID]],

  503.   },

  504.   -- Get ID of the task being processed

  505.   ['uid'] = {

  506.     ['get_value'] = function(task)

  507.       local uid = task:get_uid()

  508.       if uid then

  509.         return uid, 'string'

  510.       end

  511.       return nil

  512.     end,

  513.     ['description'] = [[Get ID of the task being processed]],

  514.   },

  515.   -- Get message ID of the task being processed

  516.   ['messageid'] = {

  517.     ['get_value'] = function(task)

  518.       local mid = task:get_message_id()

  519.       if mid then

  520.         return mid, 'string'

  521.       end

  522.       return nil

  523.     end,

  524.     ['description'] = [[Get message ID]],

  525.   },

  526.   -- Get specific symbol

  527.   ['symbol'] = {

  528.     ['get_value'] = function(task, args)

  529.       local symbol = task:get_symbol(args[1], args[2])

  530.       if symbol then

  531.         return symbol[1], 'table'

  532.       end

  533.     end,

  534.     ['description'] = 'Get specific symbol. The first argument must be the symbol name. ' ..

  535.         'The second argument is an optional shadow result name. ' ..

  536.         'Returns the symbol table. See task:get_symbol()',

  537.     ['args_schema'] = { ts.string, ts.string:is_optional() }

  538.   },

  539.   -- Get full scan result

  540.   ['scan_result'] = {

  541.     ['get_value'] = function(task, args)

  542.       local res = task:get_metric_result(args[1])

  543.       if res then

  544.         return res, 'table'

  545.       end

  546.     end,

  547.     ['description'] = 'Get full scan result (either default or shadow if shadow result name is specified)' ..

  548.         'Returns the result table. See task:get_metric_result()',

  549.     ['args_schema'] = { ts.string:is_optional() }

  550.   },

  551.   -- Get list of metatokens as strings

  552.   ['metatokens'] = {

  553.     ['get_value'] = function(task)

  554.       local tokens = meta_functions.gen_metatokens(task)

  555.       if not tokens[1] then

  556.         return nil

  557.       end

  558.       local res = {}

  559.       for _, t in ipairs(tokens) do

  560.         table.insert(res, tostring(t))

  561.       end

  562.       return res, 'string_list'

  563.     end,

  564.     ['description'] = 'Get metatokens for a message as strings',

  565.   },

  566.   ['rspamd_hostname'] = {

  567.     ['get_value'] = function(task)

  568.       return HOSTNAME, 'string'

  569.     end,

  570.     ['description'] = 'Get hostname of the filter server',

  571.   },

  572. }

  573. 

  574. return extractors