mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19581 Commits
29 Branches
Tree: f7c44dea2e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f7c44dea2e'
${ noResults }
rspamd/src/plugins/regexp.c

regexp.c 13KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. /***MODULE:regexp

  17.  * rspamd module that implements different regexp rules

  18.  */

  19. 

  20. 

  21. #include "config.h"

  22. #include "libmime/message.h"

  23. #include "expression.h"

  24. #include "mime_expressions.h"

  25. #include "libserver/maps/map.h"

  26. #include "lua/lua_common.h"

  27. 

  28. static const guint64 rspamd_regexp_cb_magic = 0xca9d9649fc3e2659ULL;

  29. 

  30. struct regexp_module_item {

  31. 	guint64 magic;

  32. 	struct rspamd_expression *expr;

  33. 	const gchar *symbol;

  34. 	struct ucl_lua_funcdata *lua_function;

  35. };

  36. 

  37. struct regexp_ctx {

  38. 	struct module_ctx ctx;

  39. 	gsize max_size;

  40. };

  41. 

  42. static void process_regexp_item (struct rspamd_task *task,

  43. 								 struct rspamd_symcache_dynamic_item *item,

  44. 								 void *user_data);

  45. 

  46. 

  47. /* Initialization */

  48. gint regexp_module_init (struct rspamd_config *cfg, struct module_ctx **ctx);

  49. gint regexp_module_config (struct rspamd_config *cfg, bool validate);

  50. gint regexp_module_reconfig (struct rspamd_config *cfg);

  51. 

  52. module_t regexp_module = {

  53. 		"regexp",

  54. 		regexp_module_init,

  55. 		regexp_module_config,

  56. 		regexp_module_reconfig,

  57. 		NULL,

  58. 		RSPAMD_MODULE_VER,

  59. 		(guint)-1,

  60. };

  61. 

  62. 

  63. static inline struct regexp_ctx *

  64. regexp_get_context (struct rspamd_config *cfg)

  65. {

  66. 	return (struct regexp_ctx *)g_ptr_array_index (cfg->c_modules,

  67. 			regexp_module.ctx_offset);

  68. }

  69. 

  70. /* Process regexp expression */

  71. static gboolean

  72. read_regexp_expression (rspamd_mempool_t * pool,

  73. 	struct regexp_module_item *chain,

  74. 	const gchar *symbol,

  75. 	const gchar *line,

  76. 	struct rspamd_mime_expr_ud *ud)

  77. {

  78. 	struct rspamd_expression *e = NULL;

  79. 	GError *err = NULL;

  80. 

  81. 	if (!rspamd_parse_expression (line, 0, &mime_expr_subr, ud, pool, &err,

  82. 			&e)) {

  83. 		msg_warn_pool ("%s = \"%s\" is invalid regexp expression: %e", symbol,

  84. 				line,

  85. 				err);

  86. 		g_error_free (err);

  87. 

  88. 		return FALSE;

  89. 	}

  90. 

  91. 	g_assert (e != NULL);

  92. 	chain->expr = e;

  93. 

  94. 	return TRUE;

  95. }

  96. 

  97. 

  98. /* Init function */

  99. gint

  100. regexp_module_init (struct rspamd_config *cfg, struct module_ctx **ctx)

  101. {

  102. 	struct regexp_ctx *regexp_module_ctx;

  103. 

  104. 	regexp_module_ctx = rspamd_mempool_alloc0 (cfg->cfg_pool,

  105. 			sizeof (*regexp_module_ctx));

  106. 

  107. 	*ctx = (struct module_ctx *)regexp_module_ctx;

  108. 

  109. 	rspamd_rcl_add_doc_by_path (cfg,

  110. 			NULL,

  111. 			"Regular expressions rules plugin",

  112. 			"regexp",

  113. 			UCL_OBJECT,

  114. 			NULL,

  115. 			0,

  116. 			NULL,

  117. 			0);

  118. 

  119. 	rspamd_rcl_add_doc_by_path (cfg,

  120. 			"regexp",

  121. 			"Maximum size of data chunk scanned with any regexp (further data is truncated)",

  122. 			"max_size",

  123. 			UCL_INT,

  124. 			NULL,

  125. 			0,

  126. 			NULL,

  127. 			0);

  128. 

  129. 	return 0;

  130. }

  131. 

  132. gint

  133. regexp_module_config (struct rspamd_config *cfg, bool validate)

  134. {

  135. 	struct regexp_ctx *regexp_module_ctx = regexp_get_context (cfg);

  136. 	struct regexp_module_item *cur_item = NULL;

  137. 	const ucl_object_t *sec, *value, *elt;

  138. 	ucl_object_iter_t it = NULL;

  139. 	gint res = TRUE, nre = 0, nlua = 0, nshots = cfg->default_max_shots;

  140. 

  141. 	if (!rspamd_config_is_module_enabled (cfg, "regexp")) {

  142. 		return TRUE;

  143. 	}

  144. 

  145. 	sec = ucl_object_lookup (cfg->rcl_obj, "regexp");

  146. 	if (sec == NULL) {

  147. 		msg_err_config ("regexp module enabled, but no rules are defined");

  148. 		return TRUE;

  149. 	}

  150. 

  151. 	regexp_module_ctx->max_size = 0;

  152. 

  153. 	while ((value = ucl_object_iterate (sec, &it, true)) != NULL) {

  154. 		if (g_ascii_strncasecmp (ucl_object_key (value), "max_size",

  155. 			sizeof ("max_size") - 1) == 0) {

  156. 			regexp_module_ctx->max_size = ucl_obj_toint (value);

  157. 			rspamd_re_cache_set_limit (cfg->re_cache, regexp_module_ctx->max_size);

  158. 		}

  159. 		else if (g_ascii_strncasecmp (ucl_object_key (value), "max_threads",

  160. 			sizeof ("max_threads") - 1) == 0) {

  161. 			msg_warn_config ("regexp module is now single threaded, max_threads is ignored");

  162. 		}

  163. 		else if (value->type == UCL_STRING) {

  164. 			struct rspamd_mime_expr_ud ud;

  165. 

  166. 			cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  167. 					sizeof (struct regexp_module_item));

  168. 			cur_item->symbol = ucl_object_key (value);

  169. 			cur_item->magic = rspamd_regexp_cb_magic;

  170. 

  171. 			ud.conf_obj = NULL;

  172. 			ud.cfg = cfg;

  173. 

  174. 			if (!read_regexp_expression (cfg->cfg_pool,

  175. 					cur_item, ucl_object_key (value),

  176. 					ucl_obj_tostring (value), &ud)) {

  177. 				if (validate) {

  178. 					return FALSE;

  179. 				}

  180. 			}

  181. 			else {

  182. 				rspamd_symcache_add_symbol (cfg->cache,

  183. 						cur_item->symbol,

  184. 						0,

  185. 						process_regexp_item,

  186. 						cur_item,

  187. 						SYMBOL_TYPE_NORMAL, -1);

  188. 				nre ++;

  189. 			}

  190. 		}

  191. 		else if (value->type == UCL_USERDATA) {

  192. 			/* Just a lua function */

  193. 			cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  194. 					sizeof (struct regexp_module_item));

  195. 			cur_item->magic = rspamd_regexp_cb_magic;

  196. 			cur_item->symbol = ucl_object_key (value);

  197. 			cur_item->lua_function = ucl_object_toclosure (value);

  198. 

  199. 			rspamd_symcache_add_symbol (cfg->cache,

  200. 					cur_item->symbol,

  201. 					0,

  202. 					process_regexp_item,

  203. 					cur_item,

  204. 					SYMBOL_TYPE_NORMAL, -1);

  205. 			nlua ++;

  206. 		}

  207. 		else if (value->type == UCL_OBJECT) {

  208. 			const gchar *description = NULL, *group = NULL;

  209. 			gdouble score = 0.0;

  210. 			guint flags = 0, priority = 0;

  211. 			gboolean is_lua = FALSE, valid_expression = TRUE;

  212. 			struct rspamd_mime_expr_ud ud;

  213. 

  214. 			/* We have some lua table, extract its arguments */

  215. 			elt = ucl_object_lookup (value, "callback");

  216. 

  217. 			if (elt == NULL || elt->type != UCL_USERDATA) {

  218. 

  219. 				/* Try plain regexp expression */

  220. 				elt = ucl_object_lookup_any (value, "regexp", "re", NULL);

  221. 

  222. 				if (elt != NULL && ucl_object_type (elt) == UCL_STRING) {

  223. 					cur_item = rspamd_mempool_alloc0 (cfg->cfg_pool,

  224. 							sizeof (struct regexp_module_item));

  225. 					cur_item->symbol = ucl_object_key (value);

  226. 					cur_item->magic = rspamd_regexp_cb_magic;

  227. 					ud.cfg = cfg;

  228. 					ud.conf_obj = value;

  229. 

  230. 					if (!read_regexp_expression (cfg->cfg_pool,

  231. 							cur_item, ucl_object_key (value),

  232. 							ucl_obj_tostring (elt), &ud)) {

  233. 						if (validate) {

  234. 							return FALSE;

  235. 						}

  236. 					}

  237. 					else {

  238. 						valid_expression = TRUE;

  239. 						nre ++;

  240. 					}

  241. 				}

  242. 				else {

  243. 					msg_err_config (

  244. 							"no callback/expression defined for regexp symbol: "

  245. 									"%s", ucl_object_key (value));

  246. 				}

  247. 			}

  248. 			else {

  249. 				is_lua = TRUE;

  250. 				nlua ++;

  251. 				cur_item = rspamd_mempool_alloc0 (

  252. 						cfg->cfg_pool,

  253. 						sizeof (struct regexp_module_item));

  254. 				cur_item->magic = rspamd_regexp_cb_magic;

  255. 				cur_item->symbol = ucl_object_key (value);

  256. 				cur_item->lua_function = ucl_object_toclosure (value);

  257. 			}

  258. 

  259. 			if (cur_item && (is_lua || valid_expression)) {

  260. 

  261. 				flags = SYMBOL_TYPE_NORMAL;

  262. 				elt = ucl_object_lookup (value, "mime_only");

  263. 

  264. 				if (elt) {

  265. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  266. 						msg_err_config (

  267. 								"mime_only attribute is not boolean for symbol: '%s'",

  268. 								cur_item->symbol);

  269. 

  270. 						if (validate) {

  271. 							return FALSE;

  272. 						}

  273. 					}

  274. 					else {

  275. 						if (ucl_object_toboolean (elt)) {

  276. 							flags |= SYMBOL_TYPE_MIME_ONLY;

  277. 						}

  278. 					}

  279. 				}

  280. 

  281. 				rspamd_symcache_add_symbol (cfg->cache,

  282. 						cur_item->symbol,

  283. 						0,

  284. 						process_regexp_item,

  285. 						cur_item,

  286. 						flags, -1);

  287. 

  288. 				/* Reset flags */

  289. 				flags = 0;

  290. 

  291. 				elt = ucl_object_lookup (value, "condition");

  292. 

  293. 				if (elt != NULL && ucl_object_type (elt) == UCL_USERDATA) {

  294. 					struct ucl_lua_funcdata *conddata;

  295. 

  296. 					g_assert (cur_item->symbol != NULL);

  297. 					conddata = ucl_object_toclosure (elt);

  298. 					rspamd_symcache_add_condition_delayed (cfg->cache,

  299. 							cur_item->symbol,

  300. 							conddata->L, conddata->idx);

  301. 				}

  302. 

  303. 				elt = ucl_object_lookup (value, "description");

  304. 

  305. 				if (elt) {

  306. 					description = ucl_object_tostring (elt);

  307. 				}

  308. 

  309. 				elt = ucl_object_lookup (value, "group");

  310. 

  311. 				if (elt) {

  312. 					group = ucl_object_tostring (elt);

  313. 				}

  314. 

  315. 				elt = ucl_object_lookup (value, "score");

  316. 

  317. 				if (elt) {

  318. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  319. 						msg_err_config (

  320. 								"score attribute is not numeric for symbol: '%s'",

  321. 								cur_item->symbol);

  322. 

  323. 						if (validate) {

  324. 							return FALSE;

  325. 						}

  326. 					}

  327. 					else {

  328. 						score = ucl_object_todouble (elt);

  329. 					}

  330. 				}

  331. 

  332. 				elt = ucl_object_lookup (value, "one_shot");

  333. 

  334. 				if (elt) {

  335. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  336. 						msg_err_config (

  337. 								"one_shot attribute is not boolean for symbol: '%s'",

  338. 								cur_item->symbol);

  339. 

  340. 						if (validate) {

  341. 							return FALSE;

  342. 						}

  343. 					}

  344. 					else {

  345. 						if (ucl_object_toboolean (elt)) {

  346. 							nshots = 1;

  347. 						}

  348. 					}

  349. 				}

  350. 

  351. 				if ((elt = ucl_object_lookup (value, "any_shot")) != NULL) {

  352. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  353. 						msg_err_config (

  354. 								"any_shot attribute is not boolean for symbol: '%s'",

  355. 								cur_item->symbol);

  356. 

  357. 						if (validate) {

  358. 							return FALSE;

  359. 						}

  360. 					}

  361. 					else {

  362. 						if (ucl_object_toboolean (elt)) {

  363. 							nshots = -1;

  364. 						}

  365. 					}

  366. 				}

  367. 

  368. 				if ((elt = ucl_object_lookup (value, "nshots")) != NULL) {

  369. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  370. 						msg_err_config (

  371. 								"nshots attribute is not numeric for symbol: '%s'",

  372. 								cur_item->symbol);

  373. 

  374. 						if (validate) {

  375. 							return FALSE;

  376. 						}

  377. 					}

  378. 					else {

  379. 						nshots = ucl_object_toint (elt);

  380. 					}

  381. 				}

  382. 

  383. 				elt = ucl_object_lookup (value, "one_param");

  384. 

  385. 				if (elt) {

  386. 					if (ucl_object_type (elt) != UCL_BOOLEAN) {

  387. 						msg_err_config (

  388. 								"one_param attribute is not boolean for symbol: '%s'",

  389. 								cur_item->symbol);

  390. 

  391. 						if (validate) {

  392. 							return FALSE;

  393. 						}

  394. 					}

  395. 					else {

  396. 						if (ucl_object_toboolean (elt)) {

  397. 							flags |= RSPAMD_SYMBOL_FLAG_ONEPARAM;

  398. 						}

  399. 					}

  400. 				}

  401. 

  402. 				elt = ucl_object_lookup (value, "priority");

  403. 

  404. 				if (elt) {

  405. 					if (ucl_object_type (elt) != UCL_FLOAT && ucl_object_type (elt) != UCL_INT) {

  406. 						msg_err_config (

  407. 								"priority attribute is not numeric for symbol: '%s'",

  408. 								cur_item->symbol);

  409. 

  410. 						if (validate) {

  411. 							return FALSE;

  412. 						}

  413. 					}

  414. 					else {

  415. 						priority = ucl_object_toint (elt);

  416. 					}

  417. 				}

  418. 				else {

  419. 					priority = 0;

  420. 				}

  421. 

  422. 				rspamd_config_add_symbol (cfg, cur_item->symbol,

  423. 						score, description, group, flags, priority, nshots);

  424. 

  425. 				elt = ucl_object_lookup (value, "groups");

  426. 

  427. 				if (elt) {

  428. 					ucl_object_iter_t gr_it;

  429. 					const ucl_object_t *cur_gr;

  430. 

  431. 					gr_it = ucl_object_iterate_new (elt);

  432. 

  433. 					while ((cur_gr = ucl_object_iterate_safe (gr_it, true)) != NULL) {

  434. 						rspamd_config_add_symbol_group (cfg, cur_item->symbol,

  435. 								ucl_object_tostring (cur_gr));

  436. 					}

  437. 

  438. 					ucl_object_iterate_free (gr_it);

  439. 				}

  440. 			}

  441. 		}

  442. 		else {

  443. 			msg_warn_config ("unknown type of attribute %s for regexp module",

  444. 				ucl_object_key (value));

  445. 		}

  446. 	}

  447. 

  448. 	if (res) {

  449. 		msg_info_config ("init internal regexp module, %d regexp rules and %d "

  450. 						 "lua rules are loaded", nre, nlua);

  451. 	}

  452. 	else {

  453. 		msg_err_config ("fatal regexp module error");

  454. 	}

  455. 

  456. 	return res;

  457. }

  458. 

  459. gint

  460. regexp_module_reconfig (struct rspamd_config *cfg)

  461. {

  462. 	return regexp_module_config (cfg, false);

  463. }

  464. 

  465. static gboolean

  466. rspamd_lua_call_expression_func (struct ucl_lua_funcdata *lua_data,

  467. 		struct rspamd_task *task,

  468. 		GArray *args, gdouble *res,

  469. 		const gchar *symbol)

  470. {

  471. 	lua_State *L = lua_data->L;

  472. 	struct rspamd_task **ptask;

  473. 	struct expression_argument *arg;

  474. 	gint pop = 0, i, nargs = 0;

  475. 

  476. 	lua_rawgeti (L, LUA_REGISTRYINDEX, lua_data->idx);

  477. 	/* Now we got function in top of stack */

  478. 	ptask = lua_newuserdata (L, sizeof(struct rspamd_task *));

  479. 	rspamd_lua_setclass (L, "rspamd{task}", -1);

  480. 	*ptask = task;

  481. 

  482. 	/* Now push all arguments */

  483. 	if (args) {

  484. 		for (i = 0; i < (gint)args->len; i ++) {

  485. 			arg = &g_array_index (args, struct expression_argument, i);

  486. 			if (arg) {

  487. 				switch (arg->type) {

  488. 				case EXPRESSION_ARGUMENT_NORMAL:

  489. 					lua_pushstring (L, (const gchar *) arg->data);

  490. 					break;

  491. 				case EXPRESSION_ARGUMENT_BOOL:

  492. 					lua_pushboolean (L, (gboolean) GPOINTER_TO_SIZE(arg->data));

  493. 					break;

  494. 				default:

  495. 					msg_err_task ("%s: cannot pass custom params to lua function",

  496. 							symbol);

  497. 					return FALSE;

  498. 				}

  499. 			}

  500. 		}

  501. 		nargs = args->len;

  502. 	}

  503. 

  504. 	if (lua_pcall (L, nargs + 1, 1, 0) != 0) {

  505. 		msg_info_task ("%s: call to lua function failed: %s", symbol,

  506. 				lua_tostring (L, -1));

  507. 		lua_pop (L, 1);

  508. 

  509. 		return FALSE;

  510. 	}

  511. 

  512. 	pop++;

  513. 

  514. 	if (lua_type (L, -1) == LUA_TNUMBER) {

  515. 		*res = lua_tonumber (L, -1);

  516. 	}

  517. 	else if (lua_type (L, -1) == LUA_TBOOLEAN) {

  518. 		*res = lua_toboolean (L, -1);

  519. 	}

  520. 	else {

  521. 		msg_info_task ("%s: lua function must return a boolean", symbol);

  522. 		*res = FALSE;

  523. 	}

  524. 

  525. 	lua_pop (L, pop);

  526. 

  527. 	return TRUE;

  528. }

  529. 

  530. 

  531. static void

  532. process_regexp_item (struct rspamd_task *task,

  533. 		struct rspamd_symcache_dynamic_item *symcache_item,

  534. 		void *user_data)

  535. {

  536. 	struct regexp_module_item *item = user_data;

  537. 	gdouble res = FALSE;

  538. 

  539. 	/* Non-threaded version */

  540. 	if (item->lua_function) {

  541. 		/* Just call function */

  542. 		res = FALSE;

  543. 		if (!rspamd_lua_call_expression_func (item->lua_function, task, NULL,

  544. 				&res, item->symbol)) {

  545. 			msg_err_task ("error occurred when checking symbol %s",

  546. 					item->symbol);

  547. 		}

  548. 	}

  549. 	else {

  550. 		/* Process expression */

  551. 		if (item->expr) {

  552. 			res = rspamd_process_expression (item->expr, 0, task);

  553. 		}

  554. 		else {

  555. 			msg_warn_task ("FIXME: %s symbol is broken with new expressions",

  556. 					item->symbol);

  557. 		}

  558. 	}

  559. 

  560. 	if (res != 0) {

  561. 		rspamd_task_insert_result (task, item->symbol, res, NULL);

  562. 	}

  563. 

  564. 	rspamd_symcache_finalize_item (task, symcache_item);

  565. }