mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17456 Commits
28 Branches
Tree: ae709edc11
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ae709edc11'
${ noResults }
rspamd/lualib/lua_maps_expressions.lua

lua_maps_expressions.lua 5.2KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206 
  1. --[[[

  2. -- @module lua_maps_expressions

  3. -- This module contains routines to combine maps, selectors and expressions

  4. -- in a generic framework

  5. @example

  6. whitelist_ip_from = {

  7.   rules {

  8.     ip {

  9.       selector = "ip";

  10.       map = "/path/to/whitelist_ip.map";

  11.     }

  12.     from {

  13.       selector = "from(smtp)";

  14.       map = "/path/to/whitelist_from.map";

  15.     }

  16.   }

  17.   expression = "ip & from";

  18. }

  19. --]]

  20. 

  21. --[[

  22. Copyright (c) 2019, Vsevolod Stakhov <vsevolod@highsecure.ru>

  23. 

  24. Licensed under the Apache License, Version 2.0 (the "License");

  25. you may not use this file except in compliance with the License.

  26. You may obtain a copy of the License at

  27. 

  28.     http://www.apache.org/licenses/LICENSE-2.0

  29. 

  30. Unless required by applicable law or agreed to in writing, software

  31. distributed under the License is distributed on an "AS IS" BASIS,

  32. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  33. See the License for the specific language governing permissions and

  34. limitations under the License.

  35. ]]--

  36. 

  37. local lua_selectors = require "lua_selectors"

  38. local lua_maps = require "lua_maps"

  39. local rspamd_expression = require "rspamd_expression"

  40. local rspamd_logger = require "rspamd_logger"

  41. local fun = require "fun"

  42. 

  43. local exports = {}

  44. 

  45. local function process_func(elt, task)

  46.   local matched = {}

  47.   local function process_atom(atom)

  48.     local rule = elt.rules[atom]

  49.     local res = 0

  50. 

  51.     local function match_rule(val)

  52.       local map_match = rule.map:get_key(val)

  53.       if map_match then

  54.         res = 1.0

  55.         matched[rule.name] = {

  56.           matched = val,

  57.           value = map_match

  58.         }

  59.       end

  60.     end

  61. 

  62.     local values = rule.selector(task)

  63. 

  64.     if values then

  65.       if type(values) == 'table' then

  66.         for _,val in ipairs(values) do

  67.           if res == 0 then

  68.             match_rule(val)

  69.           end

  70.         end

  71.       else

  72.         match_rule(values)

  73.       end

  74.     end

  75. 

  76.     return res

  77.   end

  78. 

  79.   local res = elt.expr:process(process_atom)

  80. 

  81.   if res > 0 then

  82.     return res,matched

  83.   end

  84. 

  85.   return nil

  86. end

  87. 

  88. --[[[

  89. -- @function lua_maps_expression.create(config, object, module_name)

  90. -- Creates a new maps combination from `object` for `module_name`.

  91. -- The input should be table with the following fields:

  92. --

  93. -- * `rules` - kv map of rules where each rule has `map` and `selector` mandatory attribute, also `type` for map type, e.g. `regexp`

  94. -- * `expression` - Rspamd expression where elements are names from `rules` field, e.g. `ip & from`

  95. --

  96. -- This function returns an object with public method `process(task)` that checks

  97. -- a task for the conditions defined in `expression` and `rules` and returns 2 values:

  98. --

  99. -- 1. value returned by an expression (e.g. 1 or 0)

  100. -- 2. an map (rule_name -> table) of matches, where each element has the following fields:

  101. --   * `matched` - selector's value

  102. --   * `value` - map's result

  103. --

  104. -- In case if `expression` is false a `nil` value is returned.

  105. -- @param {rspamd_config} cfg rspamd config

  106. -- @param {table} obj configuration table

  107. --

  108. --]]

  109. local function create(cfg, obj, module_name)

  110.   if not module_name then module_name = 'lua_maps_expressions' end

  111. 

  112.   if not obj or not obj.rules or not obj.expression then

  113.     rspamd_logger.errx(cfg, 'cannot add maps combination for module %s: required elements are missing',

  114.         module_name)

  115.     return nil

  116.   end

  117. 

  118.   local ret = {

  119.     process = process_func,

  120.     rules = {},

  121.     module_name = module_name

  122.   }

  123. 

  124.   for name,rule in pairs(obj.rules) do

  125.     local sel = lua_selectors.create_selector_closure(cfg, rule.selector)

  126. 

  127.     if not sel then

  128.       rspamd_logger.errx(cfg, 'cannot add selector for element %s in module %s',

  129.           name, module_name)

  130.     end

  131. 

  132.     if not rule.type then

  133.       -- Guess type

  134.       if name:find('ip') or name:find('ipnet') then

  135.         rule.type = 'radix'

  136.       elseif name:find('regexp') or name:find('re_') then

  137.         rule.type = 'regexp'

  138.       elseif name:find('glob') then

  139.         rule.type = 'regexp'

  140.       else

  141.         rule.type = 'set'

  142.       end

  143.     end

  144.     local map = lua_maps.map_add_from_ucl(rule.map, rule.type,

  145.         obj.description or module_name)

  146.     if not map then

  147.       rspamd_logger.errx(cfg, 'cannot add map for element %s in module %s',

  148.           name, module_name)

  149.     end

  150. 

  151.     if sel and map then

  152.       ret.rules[name] = {

  153.         selector = sel,

  154.         map = map,

  155.         name = name,

  156.       }

  157.     else

  158.       return nil

  159.     end

  160.   end

  161. 

  162.   -- Now process and parse expression

  163.   local function parse_atom(str)

  164.     local atom = table.concat(fun.totable(fun.take_while(function(c)

  165.       if string.find(', \t()><+!|&\n', c) then

  166.         return false

  167.       end

  168.       return true

  169.     end, fun.iter(str))), '')

  170. 

  171.     if ret.rules[atom] then

  172.       return atom

  173.     end

  174. 

  175.     rspamd_logger.errx(cfg, 'use of undefined element "%s" when parsing maps expression for %s',

  176.         atom, module_name)

  177. 

  178.     return nil

  179.   end

  180.   local expr = rspamd_expression.create(obj.expression, parse_atom,

  181.       rspamd_config:get_mempool())

  182. 

  183.   if not expr then

  184.     rspamd_logger.errx(cfg, 'cannot add map expression for module %s',

  185.         module_name)

  186.     return nil

  187.   end

  188. 

  189.   ret.expr = expr

  190. 

  191.   if obj.symbol then

  192.     rspamd_config:register_symbol{

  193.       type = 'virtual,ghost',

  194.       name = obj.symbol,

  195.       score = 0.0,

  196.     }

  197.   end

  198. 

  199.   ret.symbol = obj.symbol

  200. 

  201.   return ret

  202. end

  203. 

  204. exports.create = create

  205. 

  206. return exports