prosody-modules
24316a399978
mod_dnsbl/mod_dnsbl.lua

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

Annotate

mod_dnsbl/mod_dnsbl.lua @ 6210:24316a399978 draft

Merge
author Trần H. Trung <xmpp:trần.h.trung@trung.fun>
date Tue, 18 Mar 2025 00:19:25 +0700
parent 6209:d611ed13df7e
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
6209
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
1 local lfs = require "lfs";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
2
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
3 local adns = require "net.adns";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
4 local it = require "util.iterators";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
5 local parse_cidr = require "util.ip".parse_cidr;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
6 local parse_ip = require "util.ip".new_ip;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
7 local promise = require "util.promise";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
8 local set = require "util.set";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
9 local st = require "util.stanza";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
10
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
11 local render_message = require "util.interpolation".new("%b{}", function (s)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
12 return s;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
13 end);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
14
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
15 local trie = module:require("mod_anti_spam/trie");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
16
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
17 local dnsbls_config_raw = module:get_option("dnsbls");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
18 local default_dnsbl_flag = module:get_option_string("dnsbl_flag", "dnsbl_hit");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
19 local default_dnsbl_message = module:get_option("dnsbl_message");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
20
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
21 if not dnsbls_config_raw then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
22 module:log_status("error", "No 'dnsbls' in config file");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
23 return;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
24 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
25
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
26 local dnsbls = set.new();
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
27 local dnsbls_config = {};
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
28
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
29 for k, v in ipairs(dnsbls_config_raw) do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
30 local dnsbl_name, dnsbl_config;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
31 if type(k) == "string" then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
32 dnsbl_name = k;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
33 dnsbl_config = v;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
34 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
35 dnsbl_name = v;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
36 dnsbl_config = {};
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
37 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
38 dnsbls:add(dnsbl_name);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
39 dnsbls_config[dnsbl_name] = dnsbl_config;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
40 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
41
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
42 local function read_dnsbl_file(filename)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
43 local t = trie.new();
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
44 local f, err = io.open(filename);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
45 if not f then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
46 module:log("error", "Failed to read file: %s", err);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
47 return t;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
48 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
49
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
50 local n_line, n_added = 0, 0;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
51 for line in f:lines() do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
52 n_line = n_line + 1;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
53 line = line:gsub("#.+$", ""):match("^%s*(.-)%s*$");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
54 if line == "" then -- luacheck: ignore 542
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
55 -- Skip
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
56 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
57 local parsed_ip, parsed_bits = parse_cidr(line);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
58 if not parsed_ip then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
59 -- Skip
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
60 module:log("warn", "Failed to parse IP/CIDR on %s:%d", filename, n_line);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
61 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
62 if not parsed_bits then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
63 -- Default to full length of IP address
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
64 parsed_bits = #parsed_ip.packed * 8;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
65 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
66 t:add_subnet(parsed_ip, parsed_bits);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
67 n_added = n_added + 1;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
68 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
69 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
70 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
71
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
72 module:log("info", "Loaded %d entries from %s", n_added, filename);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
73
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
74 return t;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
75 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
76
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
77 local ipsets = {};
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
78 local ipsets_last_updated = {};
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
79
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
80 function reload_file_dnsbls()
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
81 for dnsbl in dnsbls do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
82 if dnsbl:byte(1) == 64 then -- '@'
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
83 local filename = dnsbl:sub(2);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
84 local file_last_updated = lfs.attributes(filename, "change");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
85 if (ipsets_last_updated[dnsbl] or 0) < file_last_updated then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
86 ipsets[dnsbl] = read_dnsbl_file(filename);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
87 ipsets_last_updated[dnsbl] = file_last_updated;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
88 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
89 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
90 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
91 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
92
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
93 module:hook_global("config-reloaded", reload_file_dnsbls);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
94 reload_file_dnsbls();
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
95
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
96 local mod_flags = module:depends("flags");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
97
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
98 local function reverse(ip, suffix)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
99 local a,b,c,d = ip:match("^(%d+).(%d+).(%d+).(%d+)$");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
100 if not a then return end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
101 return ("%d.%d.%d.%d.%s"):format(d,c,b,a, suffix);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
102 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
103
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
104 function check_dnsbl(ip_address, dnsbl, callback, ud)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
105 if dnsbl:byte(1) == 64 then -- '@'
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
106 local parsed_ip = parse_ip(ip_address);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
107 if not parsed_ip then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
108 module:log("warn", "Failed to parse IP address: %s", ip_address);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
109 callback(ud, false, dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
110 return;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
111 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
112 callback(ud, not not ipsets[dnsbl]:contains_ip(parsed_ip), dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
113 return;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
114 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
115 if ip_address:sub(1,7):lower() == "::ffff:" then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
116 ip_address = ip_address:sub(8);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
117 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
118
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
119 local rbl_ip = reverse(ip_address, dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
120 if not rbl_ip then return; end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
121
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
122 module:log("debug", "Sending DNSBL lookup for %s", ip_address);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
123 adns.lookup(function (reply)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
124 local hit = not not (reply and reply[1]);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
125 module:log("debug", "Received DNSBL result for %s: %s", ip_address, hit and "present" or "absent");
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
126 callback(ud, hit, dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
127 end, rbl_ip);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
128 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
129 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
130
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
131 local function handle_dnsbl_register_result(registration_event, hit, dnsbl)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
132 if not hit then return; end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
133
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
134 if registration_event.dnsbl_match then return; end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
135 registration_event.dnsbl_match = true;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
136
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
137 local username = registration_event.username;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
138 local flag = dnsbls_config[dnsbl].flag or default_dnsbl_flag;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
139
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
140 module:log("info", "Flagging %s for user %s registered from %s matching %s", flag, username, registration_event.ip, dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
141
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
142 mod_flags:add_flag(username, flag, "Matched "..dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
143
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
144 local msg = dnsbls_config[dnsbl].message or default_dnsbl_message;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
145
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
146 if msg then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
147 module:log("debug", "Sending warning message to %s", username);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
148 local msg_stanza = st.message(
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
149 {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
150 to = username.."@"..module.host;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
151 from = module.host;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
152 },
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
153 render_message(msg, { registration = registration_event })
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
154 );
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
155 module:send(msg_stanza);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
156 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
157 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
158
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
159 module:hook("user-registered", function (event)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
160 local session = event.session;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
161 local ip = event.ip or (session and session.ip);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
162 if not ip then return; end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
163
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
164 if not event.ip then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
165 event.ip = ip;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
166 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
167
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
168 for dnsbl in dnsbls do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
169 check_dnsbl(ip, dnsbl, handle_dnsbl_register_result, event);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
170 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
171 end);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
172
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
173 module:add_item("account-trait", {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
174 name = "register-dnsbl-hit";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
175 prob_bad_true = 0.6;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
176 prob_bad_false = 0.4;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
177 });
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
178
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
179 module:hook("get-account-traits", function (event)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
180 event.traits["register-dnsbl-hit"] = mod_flags.has_flag(event.username, default_dnsbl_flag);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
181 end);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
182
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
183 module:add_item("shell-command", {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
184 section = "dnsbl";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
185 section_desc = "Manage DNS blocklists";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
186 name = "lists";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
187 desc = "Show all lists currently in use on the specified host";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
188 args = {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
189 { name = "host", type = "string" };
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
190 };
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
191 host_selector = "host";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
192 handler = function(self, host) --luacheck: ignore 212/self 212/host
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
193 local count = 0;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
194 for list in dnsbls do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
195 count = count + 1;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
196 self.session.print(list);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
197 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
198 return true, ("%d lists"):format(count);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
199 end;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
200 });
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
201
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
202 module:add_item("shell-command", {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
203 section = "dnsbl";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
204 section_desc = "Manage DNS blocklists";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
205 name = "check";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
206 desc = "Check an IP against the configured block lists";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
207 args = {
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
208 { name = "host", type = "string" };
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
209 { name = "ip_address", type = "string" };
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
210 };
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
211 host_selector = "host";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
212 handler = function(self, host, ip_address) --luacheck: ignore 212/self 212/host
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
213 local parsed_ip = parse_ip(ip_address);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
214 if not parsed_ip then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
215 return false, "Failed to parse IP address";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
216 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
217
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
218 local matches, total = 0, 0;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
219
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
220 local promises = {};
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
221
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
222 for dnsbl in dnsbls do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
223 total = total + 1;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
224 promises[dnsbl] = promise.new(function (resolve)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
225 check_dnsbl(parsed_ip, dnsbl, resolve, true);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
226 end);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
227 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
228
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
229 return promise.all_settled(promises):next(function (results)
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
230 for dnsbl, result in it.sorted_pairs(results) do
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
231 local msg;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
232 if result.status == "fulfilled" then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
233 if result.value then
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
234 msg = "[X]";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
235 matches = matches + 1;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
236 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
237 msg = "[ ]";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
238 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
239 else
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
240 msg = "[?]";
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
241 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
242
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
243 print(msg, dnsbl);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
244 end
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
245 return ("Found in %d of %d lists"):format(matches, total);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
246 end);
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
247 end;
Trần H. Trung <xmpp:trần.h.trung@trung.fun>
parents:
diff changeset
248 });