diff options
| author | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2019-04-23 15:48:53 +0100 |
|---|---|---|
| committer | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2019-04-23 15:48:53 +0100 |
| commit | 413d624f765a49d29d8e4ab8607121f2a1e9d049 (patch) | |
| tree | 3e1276454e5bf723a5ce27d29cf5c2facce7bb93 /lualib | |
| parent | 3b3cfea31daf6d4572d819a624a6ea7ee6cd2e92 (diff) | |
| download | rspamd-413d624f765a49d29d8e4ab8607121f2a1e9d049.tar.gz rspamd-413d624f765a49d29d8e4ab8607121f2a1e9d049.zip | |
[Feature] Lua_util: Allow to obfuscate different fields
Diffstat (limited to 'lualib')
| -rw-r--r-- | lualib/lua_util.lua | 28 |
1 files changed, 15 insertions, 13 deletions
diff --git a/lualib/lua_util.lua b/lualib/lua_util.lua index 4f185ecab..27df2c72e 100644 --- a/lualib/lua_util.lua +++ b/lualib/lua_util.lua @@ -934,29 +934,31 @@ exports.get_task_verdict = function(task) end ---[[[ --- @function lua_util.maybe_obfuscate_subject(subject, settings) --- Obfuscate subject if enabled in settings. Also checks utf8 validity. +-- @function lua_util.maybe_obfuscate_string(subject, settings, prefix) +-- Obfuscate string if enabled in settings. Also checks utf8 validity. -- Supported settings: --- * subject_privacy = false - subject privacy is off --- * subject_privacy_alg = 'blake2' - default hash-algorithm to obfuscate subject --- * subject_privacy_prefix = 'obf' - prefix to show it's obfuscated --- * subject_privacy_length = 16 - cut the length of the hash +-- * <prefix>_privacy = false - subject privacy is off +-- * <prefix>_privacy_alg = 'blake2' - default hash-algorithm to obfuscate subject +-- * <prefix>_privacy_prefix = 'obf' - prefix to show it's obfuscated +-- * <prefix>_privacy_length = 16 - cut the length of the hash -- @return obfuscated or validated subject --]] -exports.maybe_obfuscate_subject = function(subject, settings) +exports.maybe_obfuscate_string = function(subject, settings, prefix) local hash = require 'rspamd_cryptobox_hash' if subject and not rspamd_util.is_valid_utf8(subject) then subject = '???' - elseif settings.subject_privacy then - local hash_alg = settings.subject_privacy_alg or 'blake2' + elseif settings[prefix .. '_privacy'] then + local hash_alg = settings[prefix .. '_privacy_alg'] or 'blake2' local subject_hash = hash.create_specific(hash_alg, subject) + local strip_len = settings[prefix .. '_privacy_length'] + local privacy_prefix = settings[prefix .. '_privacy_prefix'] or '' - if settings.subject_privacy_length then - subject = (settings.subject_privacy_prefix or 'obf') .. ':' .. - subject_hash:hex():sub(1, settings.subject_privacy_length) + if strip_len then + subject = privacy_prefix .. ':' .. + subject_hash:hex():sub(1, strip_len) else - subject = (settings.subject_privacy_prefix or '') .. ':' .. + subject = privacy_prefix .. ':' .. subject_hash:hex() end end |