]>
git.proxmox.com Git - pmg-api.git/blob - src/PMG/RuleCache.pm
fd22a16ddb851da359eff5d417b116419d8b286d
1 package PMG
::RuleCache
;
13 my $ocache_size = 1023;
16 my ($type, $ruledb) = @_;
20 $self->{ruledb
} = $ruledb;
27 my $dbh = $ruledb->{dbh
};
29 my $sha1 = Digest
::SHA-
>new;
42 # read a consistent snapshot
43 $dbh->do("SET TRANSACTION ISOLATION LEVEL SERIALIZABLE");
45 my $sth = $dbh->prepare(
46 "SELECT ID, Name, Priority, Active, Direction FROM Rule " .
48 "ORDER BY Priority DESC, ID DESC");
52 while (my $ref = $sth->fetchrow_hashref()) {
53 my $ruleid = $ref->{id
};
54 my $rule = PMG
::RuleDB
::Rule-
>new(
55 $ref->{name
}, $ref->{priority
}, $ref->{active
},
58 $rule->{id
} = $ruleid;
61 $sha1->add(join(',', $ref->{id
}, $ref->{name
}, $ref->{priority
}, $ref->{active
},
62 $ref->{direction
}) . "|");
64 $self->{"$ruleid:from"} = { groups
=> [] };
65 $self->{"$ruleid:to"} = { groups
=> [] };
66 $self->{"$ruleid:when"} = { groups
=> [] };
67 $self->{"$ruleid:what"} = { groups
=> [] };
68 $self->{"$ruleid:action"} = { groups
=> [] };
70 my $sth1 = $dbh->prepare(
71 "SELECT Objectgroup_ID, Grouptype FROM RuleGroup " .
72 "where RuleGroup.Rule_ID = '$ruleid' " .
73 "ORDER BY Grouptype, Objectgroup_ID");
76 while (my $ref1 = $sth1->fetchrow_hashref()) {
77 my $gtype = $ref1->{grouptype
};
78 my $groupid = $ref1->{objectgroup_id
};
81 my $sth2 = $dbh->prepare(
82 "SELECT ID FROM Object where Objectgroup_ID = '$groupid' " .
85 while (my $ref2 = $sth2->fetchrow_hashref()) {
86 my $objid = $ref2->{'id'};
87 my $obj = $self->_get_object($objid);
89 $sha1->add (join (',', $objid, $gtype, $groupid) . "|");
90 $sha1->add ($obj->{digest
}, "|");
94 if ($gtype == 3) { # what
95 if ($obj->otype == PMG
::RuleDB
::ArchiveFilter-
>otype ||
96 $obj->otype == PMG
::RuleDB
::MatchArchiveFilename-
>otype)
98 if ($rule->{direction
} == 0) {
99 $self->{archivefilter_in
} = 1;
100 } elsif ($rule->{direction
} == 1) {
101 $self->{archivefilter_out
} = 1;
103 $self->{archivefilter_in
} = 1;
104 $self->{archivefilter_out
} = 1;
107 } elsif ($gtype == 4) { # action
108 $self->{"$ruleid:final"} = 1 if $obj->final();
117 my $type = $type_map->{$gtype};
118 push $self->{"$ruleid:$type"}->{groups
}->@*, $group;
124 # Cache Greylist Exclusion
125 $sth = $dbh->prepare(
126 "SELECT object.id FROM object, objectgroup " .
127 "WHERE class = 'greylist' AND " .
128 "objectgroup.id = object.objectgroup_id " .
129 "ORDER BY object.id");
132 my $grey_excl_sender = ();
133 my $grey_excl_receiver = ();
134 while (my $ref2 = $sth->fetchrow_hashref()) {
135 my $obj = $self->_get_object ($ref2->{'id'});
137 if ($obj->receivertest()) {
138 push @$grey_excl_receiver, $obj;
140 push @$grey_excl_sender, $obj;
142 $sha1->add ($ref2->{'id'}, "|");
143 $sha1->add ($obj->{digest
}, "|");
146 $self->{"greylist:sender"} = $grey_excl_sender;
147 $self->{"greylist:receiver"} = $grey_excl_receiver;
153 $dbh->rollback; # end transaction
155 syslog
('err', "unable to load rulecache : $err") if $err;
157 $self->{rules
} = $rules;
159 $self->{digest
} = $sha1->hexdigest;
165 my ($self, $ruleid) = @_;
167 defined($ruleid) || die "undefined rule id: ERROR";
169 return $self->{"$ruleid:final"};
179 my ($self, $objid) = @_;
181 my $cid = $objid % $ocache_size;
183 my $obj = $self->{ocache
}[$cid];
185 if (!defined ($obj) || $obj->{id
} != $objid) {
186 $obj = $self->{ruledb
}->load_object($objid);
187 $self->{ocache
}[$cid] = $obj;
190 $obj || die "unable to get object $objid: ERROR";
196 my ($self, $ruleid) = @_;
198 defined($ruleid) || die "undefined rule id: ERROR";
200 my $actions = $self->{"$ruleid:action"};
202 return undef if scalar($actions->{groups
}->@*) == 0;
205 for my $action ($actions->{groups
}->@*) {
206 push $res->@*, $action->{objects
}->@*;
212 my ($self, $addr, $ip) = @_;
214 my $grey = $self->{"greylist:sender"};
216 foreach my $obj (@$grey) {
217 if ($obj->who_match ($addr, $ip)) {
225 sub greylist_match_receiver
{
226 my ($self, $addr) = @_;
228 my $grey = $self->{"greylist:receiver"};
230 foreach my $obj (@$grey) {
231 if ($obj->who_match($addr)) {
240 my ($self, $ruleid, $addr, $ip, $ldap) = @_;
242 my $from = $self->{"$ruleid:from"};
244 return 1 if scalar($from->{groups
}->@*) == 0;
246 # postfix prefixes ipv6 addresses with IPv6:
247 if (defined($ip) && $ip =~ /^IPv6:(.*)/) {
251 for my $group ($from->{groups
}->@*) {
252 for my $obj ($group->{objects
}->@*) {
253 return 1 if $obj->who_match($addr, $ip, $ldap);
261 my ($self, $ruleid, $addr, $ldap) = @_;
263 my $to = $self->{"$ruleid:to"};
265 return 1 if scalar($to->{groups
}->@*) == 0;
267 for my $group ($to->{groups
}->@*) {
268 for my $obj ($group->{objects
}->@*) {
269 return 1 if $obj->who_match($addr, undef, $ldap);
278 my ($self, $ruleid, $time) = @_;
280 my $when = $self->{"$ruleid:when"};
282 return 1 if scalar($when->{groups
}->@*) == 0;
284 for my $group ($when->{groups
}->@*) {
285 for my $obj ($group->{objects
}->@*) {
286 return 1 if $obj->when_match($time);
294 my ($self, $ruleid, $queue, $element, $msginfo, $dbh) = @_;
296 my $what = $self->{"$ruleid:what"};
300 # $res->{marks} is used by mark specific actions like remove-attachments
301 # $res->{$target}->{marks} is only used in apply_rules() to exclude some
302 # targets (spam blacklist and whitelist)
304 if (scalar($what->{groups
}->@*) == 0) {
306 foreach my $target (@{$msginfo->{targets
}}) {
307 $res->{$target}->{marks
} = [];
316 for my $group ($what->{groups
}->@*) {
317 for my $obj ($group->{objects
}->@*) {
318 if (!$obj->can('what_match_targets')) {
319 if (my $match = $obj->what_match($queue, $element, $msginfo, $dbh)) {
320 push @$marks, @$match;
326 foreach my $target (@{$msginfo->{targets
}}) {
327 $res->{$target}->{marks
} = $marks;
328 $res->{marks
} = $marks;
331 for my $group ($what->{groups
}->@*) {
332 for my $obj ($group->{objects
}->@*) {
333 if ($obj->can ("what_match_targets")) {
335 if ($target_info = $obj->what_match_targets($queue, $element, $msginfo, $dbh)) {
336 foreach my $k (keys %$target_info) {
337 $res->{$k} = $target_info->{$k};
projects / pmg-api.git / blob