mirrors
/
rspamd
spogulis no https://github.com/vstakhov/rspamd.git
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Laidieni 159 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
19573 Revīzijas
29 Atzari
Koks: c11d23e849
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'c11d23e849'
${ noResults }
rspamd/lualib/lua_scanners/spamassassin.lua

spamassassin.lua 6.9KB
Neapstrādāts Vainot Vēsture

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216 
  1. --[[

  2. Copyright (c) 2022, Vsevolod Stakhov <vsevolod@rspamd.com>

  3. Copyright (c) 2019, Carsten Rosenberg <c.rosenberg@heinlein-support.de>

  4. 

  5. Licensed under the Apache License, Version 2.0 (the "License");

  6. you may not use this file except in compliance with the License.

  7. You may obtain a copy of the License at

  8. 

  9.     http://www.apache.org/licenses/LICENSE-2.0

  10. 

  11. Unless required by applicable law or agreed to in writing, software

  12. distributed under the License is distributed on an "AS IS" BASIS,

  13. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14. See the License for the specific language governing permissions and

  15. limitations under the License.

  16. ]]--

  17. 

  18. --[[[

  19. -- @module spamassassin

  20. -- This module contains spamd access functions.

  21. --]]

  22. 

  23. local lua_util = require "lua_util"

  24. local tcp = require "rspamd_tcp"

  25. local upstream_list = require "rspamd_upstream_list"

  26. local rspamd_logger = require "rspamd_logger"

  27. local common = require "lua_scanners/common"

  28. 

  29. local N = 'spamassassin'

  30. 

  31. local function spamassassin_config(opts)

  32. 

  33.   local spamassassin_conf = {

  34.     N = N,

  35.     scan_mime_parts = false,

  36.     scan_text_mime = false,

  37.     scan_image_mime = false,

  38.     default_port = 783,

  39.     timeout = 15.0,

  40.     log_clean = false,

  41.     retransmits = 2,

  42.     cache_expire = 3600, -- expire redis in one hour

  43.     symbol = "SPAMD",

  44.     message = '${SCANNER}: Spamassassin bulk message found: "${VIRUS}"',

  45.     detection_category = "spam",

  46.     default_score = 1,

  47.     action = false,

  48.     extended = false,

  49.     symbol_type = 'postfilter',

  50.     dynamic_scan = true,

  51.   }

  52. 

  53.   spamassassin_conf = lua_util.override_defaults(spamassassin_conf, opts)

  54. 

  55.   if not spamassassin_conf.prefix then

  56.     spamassassin_conf.prefix = 'rs_' .. spamassassin_conf.name .. '_'

  57.   end

  58. 

  59.   if not spamassassin_conf.log_prefix then

  60.     if spamassassin_conf.name:lower() == spamassassin_conf.type:lower() then

  61.       spamassassin_conf.log_prefix = spamassassin_conf.name

  62.     else

  63.       spamassassin_conf.log_prefix = spamassassin_conf.name .. ' (' .. spamassassin_conf.type .. ')'

  64.     end

  65.   end

  66. 

  67.   if not spamassassin_conf.servers then

  68.     rspamd_logger.errx(rspamd_config, 'no servers defined')

  69. 

  70.     return nil

  71.   end

  72. 

  73.   spamassassin_conf.upstreams = upstream_list.create(rspamd_config,

  74.     spamassassin_conf.servers,

  75.     spamassassin_conf.default_port)

  76. 

  77.   if spamassassin_conf.upstreams then

  78.     lua_util.add_debug_alias('external_services', spamassassin_conf.N)

  79.     return spamassassin_conf

  80.   end

  81. 

  82.   rspamd_logger.errx(rspamd_config, 'cannot parse servers %s',

  83.     spamassassin_conf.servers)

  84.   return nil

  85. end

  86. 

  87. local function spamassassin_check(task, content, digest, rule)

  88.   local function spamassassin_check_uncached ()

  89.     local upstream = rule.upstreams:get_upstream_round_robin()

  90.     local addr = upstream:get_addr()

  91.     local retransmits = rule.retransmits

  92. 

  93.     -- Build the spamd query

  94.     -- https://svn.apache.org/repos/asf/spamassassin/trunk/spamd/PROTOCOL

  95.     local request_data = {

  96.       "HEADERS SPAMC/1.5\r\n",

  97.       "User: root\r\n",

  98.       "Content-length: ".. #content .. "\r\n",

  99.       "\r\n",

  100.       content,

  101.     }

  102. 

  103.     local function spamassassin_callback(err, data)

  104. 

  105.       local function spamassassin_requery(error)

  106.         -- set current upstream to fail because an error occurred

  107.         upstream:fail()

  108. 

  109.         -- retry with another upstream until retransmits exceeds

  110.         if retransmits > 0 then

  111. 

  112.           retransmits = retransmits - 1

  113. 

  114.           lua_util.debugm(rule.N, task, '%s: Request Error: %s - retries left: %s',

  115.             rule.log_prefix, error, retransmits)

  116. 

  117.           -- Select a different upstream!

  118.           upstream = rule.upstreams:get_upstream_round_robin()

  119.           addr = upstream:get_addr()

  120. 

  121.           lua_util.debugm(rule.N, task, '%s: retry IP: %s:%s',

  122.             rule.log_prefix, addr, addr:get_port())

  123. 

  124.           tcp.request({

  125.             task = task,

  126.             host = addr:to_string(),

  127.             port = addr:get_port(),

  128.             timeout = rule['timeout'],

  129.             data = request_data,

  130.             callback = spamassassin_callback,

  131.           })

  132.         else

  133.           rspamd_logger.errx(task, '%s: failed to scan, maximum retransmits '..

  134.             'exceed - err: %s', rule.log_prefix, error)

  135.           common.yield_result(task, rule, 'failed to scan and retransmits exceed: ' .. error, 0.0, 'fail')

  136.         end

  137.       end

  138. 

  139.       if err then

  140. 

  141.         spamassassin_requery(err)

  142. 

  143.       else

  144.         -- Parse the response

  145.         if upstream then upstream:ok() end

  146. 

  147.         --lua_util.debugm(rule.N, task, '%s: returned result: %s', rule.log_prefix, data)

  148. 

  149.         --[[

  150.         patterns tested against Spamassassin 3.4.6

  151. 

  152.         X-Spam-Status: No, score=1.1 required=5.0 tests=HTML_MESSAGE,MIME_HTML_ONLY,

  153.           TVD_RCVD_SPACE_BRACKET,UNPARSEABLE_RELAY autolearn=no

  154.           autolearn_force=no version=3.4.6

  155.         ]] --

  156.         local header = string.gsub(tostring(data), "[\r\n]+[\t ]", " ")

  157.         --lua_util.debugm(rule.N, task, '%s: returned header: %s', rule.log_prefix, header)

  158. 

  159.         local symbols = ""

  160.         local spam_score = 0

  161.         for s in header:gmatch("[^\r\n]+") do

  162.           if string.find(s, 'X%-Spam%-Status: %S+, score') then

  163.             local pattern_symbols = "X%-Spam%-Status: %S+, score%=([%-%d%.]+)%s.*tests%=(.*,?)(%s*%S+)%sautolearn.*"

  164.             spam_score = string.gsub(s, pattern_symbols, "%1")

  165.             symbols = string.gsub(s, pattern_symbols, "%2%3")

  166.             symbols = string.gsub(symbols, "%s", "")

  167.           end

  168.         end

  169. 

  170.         lua_util.debugm(rule.N, task, '%s: spam_score: %s, symbols: %s, int spam_score: |%s|, type spam_score: |%s|',

  171.           rule.log_prefix, spam_score, symbols, tonumber(spam_score), type(spam_score))

  172. 

  173.         if tonumber(spam_score) > 0 and #symbols > 0 and symbols ~= "none" then

  174. 

  175.           if rule.extended == false then

  176.             common.yield_result(task, rule, symbols, spam_score)

  177.             common.save_cache(task, digest, rule, symbols, spam_score)

  178.           else

  179.             local symbols_table = lua_util.str_split(symbols, ",")

  180.             lua_util.debugm(rule.N, task, '%s: returned symbols as table: %s', rule.log_prefix, symbols_table)

  181. 

  182.             common.yield_result(task, rule, symbols_table, spam_score)

  183.             common.save_cache(task, digest, rule, symbols_table, spam_score)

  184.           end

  185.         else

  186.           common.save_cache(task, digest, rule, 'OK')

  187.           common.log_clean(task, rule, 'no spam detected - spam score: ' .. spam_score .. ', symbols: ' .. symbols)

  188.         end

  189.       end

  190.     end

  191. 

  192.     tcp.request({

  193.       task = task,

  194.       host = addr:to_string(),

  195.       port = addr:get_port(),

  196.       timeout = rule['timeout'],

  197.       data = request_data,

  198.       callback = spamassassin_callback,

  199.     })

  200.   end

  201. 

  202.   if common.condition_check_and_continue(task, content, rule, digest, spamassassin_check_uncached) then

  203.     return

  204.   else

  205.     spamassassin_check_uncached()

  206.   end

  207. 

  208. end

  209. 

  210. return {

  211.   type = {N,'spam', 'scanner'},

  212.   description = 'spamassassin spam scanner',

  213.   configure = spamassassin_config,

  214.   check = spamassassin_check,

  215.   name = N

  216. }