From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by lists.proxmox.com (Postfix) with ESMTPS id DB6199403C for ; Wed, 21 Feb 2024 13:25:15 +0100 (CET) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 2942916C71 for ; Wed, 21 Feb 2024 13:24:45 +0100 (CET) Received: from proxmox-new.maurer-it.com (proxmox-new.maurer-it.com [94.136.29.106]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by firstgate.proxmox.com (Proxmox) with ESMTPS for ; Wed, 21 Feb 2024 13:24:43 +0100 (CET) Received: from proxmox-new.maurer-it.com (localhost.localdomain [127.0.0.1]) by proxmox-new.maurer-it.com (Proxmox) with ESMTP id 7D6AE44480 for ; Wed, 21 Feb 2024 13:24:42 +0100 (CET) From: Dominik Csapak To: pmg-devel@lists.proxmox.com Date: Wed, 21 Feb 2024 13:24:35 +0100 Message-Id: <20240221122439.1281024-10-d.csapak@proxmox.com> X-Mailer: git-send-email 2.30.2 In-Reply-To: <20240221122439.1281024-1-d.csapak@proxmox.com> References: <20240221122439.1281024-1-d.csapak@proxmox.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SPAM-LEVEL: Spam detection results: 0 AWL 0.019 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record T_SCC_BODY_TEXT_LINE -0.01 - Subject: [pmg-devel] [PATCH pmg-api v2 09/10] RuleCache: implement and/invert for what matches X-BeenThere: pmg-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox Mail Gateway development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Feb 2024 12:25:15 -0000 Since what matches are not a simple boolean match, but also can contain "marks" to mark specific parts of the mail, we must implement some custom logic for and/invert here. The goal here is to define that groups are on a per part level, but the rule operates on the whole mail. To achieve this we have two different and/invert combine functions, one for the group level and one for the whole what match. For per group and/inversion we and 'and-combine' and invert the list of marks, so if it matches part 1,2 of 1,2,3 the inversion would return 3. For the rule it only matters if the and/inversion part matches at all, regardless of the marks. If it matches, the marks will be or'ed. With this, one can represent many different scenarios that were not possible before. Signed-off-by: Dominik Csapak --- src/PMG/RuleCache.pm | 164 +++++++++++++++++++++++++++++++++++++-- src/PMG/RuleDB/Remove.pm | 12 ++- 2 files changed, 167 insertions(+), 9 deletions(-) diff --git a/src/PMG/RuleCache.pm b/src/PMG/RuleCache.pm index d0fa1f8..14da88f 100644 --- a/src/PMG/RuleCache.pm +++ b/src/PMG/RuleCache.pm @@ -332,29 +332,146 @@ sub what_match { return ($marks, $spaminfo); } + my $what_matches = {}; + for my $group ($what->{groups}->@*) { + my $group_matches = {}; + my $and = $group->{and}; + my $invert = $group->{invert}; for my $obj ($group->{objects}->@*) { if (!$obj->can('what_match_targets')) { - if (my $match = $obj->what_match($queue, $element, $msginfo, $dbh)) { - for my $target ($msginfo->{targets}->@*) { - push $marks->{$target}->@*, $match->@*; + my $match = $obj->what_match($queue, $element, $msginfo, $dbh); + for my $target ($msginfo->{targets}->@*) { + if (defined($match)) { + push $group_matches->{$target}->@*, $match; + } else { + push $group_matches->{$target}->@*, undef; } } } else { - if (my $target_info = $obj->what_match_targets($queue, $element, $msginfo, $dbh)) { - foreach my $k (keys $target_info->%*) { - push $marks->{$k}->@*, $target_info->{$k}->{marks}->@*; + my $target_info = $obj->what_match_targets($queue, $element, $msginfo, $dbh); + for my $target ($msginfo->{targets}->@*) { + my $match = $target_info->{$target}; + if (defined($match)) { + push $group_matches->{$target}->@*, $match->{marks}; # only save spaminfo once - $spaminfo = $target_info->{$k}->{spaminfo} if !defined($spaminfo); + $spaminfo = $match->{spaminfo} if !defined($spaminfo); + } else { + push $group_matches->{$target}->@*, undef; } } } } + + for my $target (keys $group_matches->%*) { + my $matches = group_match_and_invert($group_matches->{$target}, $and, $invert, $msginfo); + push $what_matches->{$target}->@*, $matches; + } + } + + for my $target (keys $what_matches->%*) { + my $target_marks = what_match_and_invert($what_matches->{$target}, $what->{and}, $what->{invert}); + $marks->{$target} = $target_marks; } return ($marks, $spaminfo); } +# combines matches of groups +# this is only binary, and if it matches, 'or' combines the marks +# so that all found marks are included +# +# this way we can create rules like: +# +# --- +# What is and combined: +# group1: match filename .*\.pdf +# group2: spamlevel >= 3 +# ACTION: remove attachments +# --- +# which would remove attachments for all *.pdf filenames where +# the spamlevel is >= 3 +sub what_match_and_invert($$$) { + my ($matches, $and, $invert) = @_; + + my $match_result = match_list_with_mode($matches, $and, $invert, sub { + my ($match) = @_; + return defined($match); + }); + + if ($match_result) { + my $res = []; + for my $match ($matches->@*) { + push $res->@*, $match->@* if defined($match); + } + return $res; + } else { + return undef; + } +} + +# combines group matches according to and/invert +# since we want match groups per mime part, we must +# look at the marks and possibly invert them +sub group_match_and_invert($$$$) { + my ($group_matches, $and, $invert, $msginfo) = @_; + + my $encountered_parts = 0; + if ($and) { + my $set = {}; + my $count = scalar($group_matches->@*); + for my $match ($group_matches->@*) { + if (!defined($match)) { + $set = {}; + last; + } + + if (scalar($match->@*) > 0) { + $encountered_parts = 1; + $set->{$_}++ for $match->@*; + } else { + $set->{$_}++ for (1..$msginfo->{max_aid}); + } + } + + $group_matches = undef; + for my $key (keys $set->%*) { + if ($set->{$key} == $count) { + push $group_matches->@*, $key; + } + } + if (defined($group_matches) && scalar($group_matches->@*) == $count && !$encountered_parts) { + $group_matches = []; + } + } else { + my $set = {}; + for my $match ($group_matches->@*) { + next if !defined($match); + if (scalar($match->@*) == 0) { + $set->{$_} = 1 for (1..$msginfo->{max_aid}); + } else { + $encountered_parts = 1; + $set->{$_} = 1 for $match->@*; + } + } + + my $count = scalar(keys $set->%*); + if ($count == $msginfo->{max_aid} && !$encountered_parts) { + $group_matches = []; + } elsif ($count == 0) { + $group_matches = undef; + } else { + $group_matches = [keys $set->%*]; + } + } + + if ($invert) { + $group_matches = invert_mark_list($group_matches, $msginfo->{max_aid}); + } + + return $group_matches; +} + # calls sub with each element of $list, and and/ors/inverts the result sub match_list_with_mode($$$$) { my ($list, $and, $invert, $sub) = @_; @@ -374,4 +491,37 @@ sub match_list_with_mode($$$$) { return $and != $invert; } +# inverts a list of marks with the remaining ones of the mail +# examples: +# mail has [1,2,3,4,5] +# +# undef => [1,2,3,4,5] +# [1,2] => [3,4,5] +# [1,2,3,4,5] => undef +# [] => undef // [] means the whole mail matched +sub invert_mark_list($$) { + my ($list, $max_aid) = @_; + + if (defined($list)) { + my $length = scalar($list->@*); + if ($length == 0 || $length == ($max_aid - 1)) { + return undef; + } + } + + $list //= []; + + my $set = {}; + $set->{$_} = 1 for $list->@*; + + my $new_list = []; + for (my $i = 1; $i <= $max_aid; $i++) { + if (!$set->{$i}) { + push $new_list->@*, $i; + } + } + + return $new_list; +} + 1; diff --git a/src/PMG/RuleDB/Remove.pm b/src/PMG/RuleDB/Remove.pm index 3acc861..7cc06b1 100644 --- a/src/PMG/RuleDB/Remove.pm +++ b/src/PMG/RuleDB/Remove.pm @@ -209,7 +209,14 @@ sub execute { return if !$found_mark; } - my $subgroups = $mod_group->subgroups ($targets); + my $subgroups; + if ($marks->{spaminfo}) { + # when there was a spam check in the rule, we might have different marks for + # different targets, so simply copy the mail for each target that matches + $subgroups = $mod_group->explode($targets); + } else { + $subgroups = $mod_group->subgroups ($targets); + } my $html = PMG::Utils::subst_values($self->{text}, $vars); @@ -263,7 +270,8 @@ sub execute { $self->{message_seen} = 0; - # since currently all marks are equal for all target, just use the first one + # if we only had a spam/virus check, the marks are identical + # otherwise we get a subgroup per target anyway my $match_marks = $marks->{$tg->[0]}; $self->delete_marked_parts($queue, $entity, $html, $rtype, $match_marks, $rulename); -- 2.30.2