bug-mailfromd

Re: [Bug-mailfromd] spam getting through in 9.0 on custom module

To: "Marc" <Marc@xxxxxxxxxxxxxxxxx>
Subject: Re: [Bug-mailfromd] spam getting through in 9.0 on custom module
From: "Sergey Poznyakoff" <gray@xxxxxxxxxx>
Date: Mon, 20 May 2024 19:25:03 +0200
Cc: "bug-mailfromd@xxxxxxxxxx" <bug-mailfromd@xxxxxxxxxx>
Dkim-signature: v=1;a=rsa-sha256;d=gnu.org.ua;s=gray;c=relaxed/relaxed; q=dns/txt; h=From:From:Reply-To:Reply-To:Subject:Subject:Date:Date:To:Cc:Resent-Date :Resent-From:Resent-To:Resent-Cc:In-Reply-To:References:List-Id:List-Help :List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=vHnzMTd3ZjpNTEU2qNpBwxqBmbxWAQjfmoNE9cfb8P4=; b=pr/5VzwwT+WI10bPuHidk/g+Wl7Ym89EEeidUVbZ83C50Ww3zqBOMbo0IUqHbu87GqRzpTh8sqXt JBo+jLuDwUlTxfuL65kCveML0LlQBJPLe9lfs62KtuckEWNoeNVKH0RPs8eoBFUJNpsqQ9/NwuLsQe JVY2IFSgoX85zXbXiQrzCQdBs5kjNnlQs6O2qsuxCBlqzv7Wpw7dpmlTMayQpcbMdLEZnCLRc9eAI/ DBeT+ucdxmWjkEGauY+XFstokv6l7/dHvGkJ1MFSeeFnR1AIBOMKzeCiDQ8fK/DWzKFherXRcXjnb+ A4samGF6GPWWkh8J2mDeHTHs4567xCaw==;
In-reply-to: Your message of Mon, 20 May 2024 14:53:35 +0000 <61e14c803b32443b957d039b14531e5a@f1-outsourcing.eu>
References: <61e14c803b32443b957d039b14531e5a@f1-outsourcing.eu>
User-agent: MH (GNU Mailutils 3.15)

Marc <Marc@xxxxxxxxxxxxxxxxx> ha escrit:

> I have this code/module[1]. It looks like this is not working any more
> since upgrading to 9.0 I have. Nothing is being matched. Any idea what
> this can be? Or maybe there is a new solution for this?

The NEWS file for version 8.17 (sic) states that:

  ** primitive_resolve and resolve functions

   string primitive_resolve (string HOST; string DOMAIN, number FAMILY)
   string resolve (string HOST; string DOMAIN, number FAMILY)

   The use of DOMAIN argument is deprecated.
   ...

Then, the documentation for primitive_resolve[1] says:

  string primitive_resolve (string host, [string domain, number family])
  ...
    If a non-empty string is given as domain, the function works as
    follows:
    ...
    [if] host is a string representation of an IPv4 address the address
    is reversed, then a dot and domainâare appended to it. Finally, the
    DNS is queried for an Aârecord of the resulting name.

    Thus,
        primitive_resolve("192.0.2.1", "rev.example.com")
    is equivalent to
        primitive_resolve("1.2.0.192.rev.example.com")

This all boils down to the following: replace the following line in
match_dnsbl_range:

    string res resolve ("\4.\3.\2.\1", zone)

with

    string res resolve (address, zone)

and it will work as expected.  Notice, however, that each call to
match_dnsbl_ret can result in up to N calls to resolve, where N is
number of variadic arguments.  Obviously this slows down your program.
Besides, as noticed above, the use of domain argument is deprecated.
The proper solution therefore would be to rewrite match_dnsbl_range as
follows:

func match_dnsbl_range(string address, string zone, string ...)
  returns number
do
  set res dns_query(DNS_TYPE_A, reverse_ipstr(address).".".zone)
  if res >= 0
    loop for set i 0,
	 while i < dns_reply_count(res),
	 set i i + 1
    do
      set a dns_reply_string(res, i)
      loop for number j 1,
	   while j < $# - @zone,
	   set j j + 1
      do
	set iprange $(j)
	if iprange = 'ANY'
	  set iprange '127.0.0.0/8'
	fi
	if match_cidr(a, iprange)
	  set dnsbl_result a
	  dns_reply_release(res)
	  return 1
	fi
      done
    done
    dns_reply_release(res)
  fi
  return 0
done

Then you can use it instead of match_dnsbl_ret

Kind regards,
Sergey

[1] https://www.gnu.org.ua/software/mailfromd/manual/Simplified-DNS-functions.html#index-primitive_005fresolve

References:
- [Bug-mailfromd] spam getting through in 9.0 on custom module
  - From: Marc

Prev by Date: Re: [Bug-mailfromd] spam getting through in 9.0 on custom module
Next by Date: Re: [Bug-mailfromd] attachment filtering / removal
Previous by thread: Re: [Bug-mailfromd] spam getting through in 9.0 on custom module
Index(es):
- Date
- Thread