usr.sbin/spamdb/spamdb.c

*0033a982Smestre/*	$OpenBSD: spamdb.c,v 1.36 2018/07/26 19:33:20 mestre Exp $	*/
84d82a5fSderaadt
1f68c1d4Sbeck/*
1f68c1d4Sbeck * Copyright (c) 2004 Bob Beck.  All rights reserved.
1f68c1d4Sbeck *
1f68c1d4Sbeck * Permission to use, copy, modify, and distribute this software for any
1f68c1d4Sbeck * purpose with or without fee is hereby granted, provided that the above
1f68c1d4Sbeck * copyright notice and this permission notice appear in all copies.
1f68c1d4Sbeck *
1f68c1d4Sbeck * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
1f68c1d4Sbeck * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
1f68c1d4Sbeck * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
1f68c1d4Sbeck * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
1f68c1d4Sbeck * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
1f68c1d4Sbeck * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
1f68c1d4Sbeck * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
1f68c1d4Sbeck */
1f68c1d4Sbeck
1f68c1d4Sbeck#include <sys/types.h>
1f68c1d4Sbeck#include <sys/socket.h>
1f68c1d4Sbeck#include <netinet/in.h>
1f68c1d4Sbeck#include <arpa/inet.h>
1f68c1d4Sbeck#include <db.h>
1f68c1d4Sbeck#include <err.h>
1f68c1d4Sbeck#include <fcntl.h>
1f68c1d4Sbeck#include <stdio.h>
1f68c1d4Sbeck#include <stdlib.h>
1f68c1d4Sbeck#include <string.h>
1f68c1d4Sbeck#include <time.h>
85714724Sitojun#include <netdb.h>
1e913b92Sbeck#include <ctype.h>
4020b879Sbeck#include <errno.h>
8929f197Smillert#include <unistd.h>
1f68c1d4Sbeck
1f68c1d4Sbeck#include "grey.h"
1f68c1d4Sbeck
1e913b92Sbeck/* things we may add/delete from the db */
1e913b92Sbeck#define WHITE 0
1e913b92Sbeck#define TRAPHIT 1
1e913b92Sbeck#define SPAMTRAP 2
88a0bb7eSmillert#define GREY 3
1e913b92Sbeck
d0872fbcSbeckint	dblist(DB *);
d0872fbcSbeckint	dbupdate(DB *, char *, int, int);
5ef50bb8Sdhill
1f68c1d4Sbeckint
d0872fbcSbeckdbupdate(DB *db, char *ip, int add, int type)
1f68c1d4Sbeck{
a9073584Sbeck	DBT		dbk, dbd;
1f68c1d4Sbeck	struct gdata	gd;
1f68c1d4Sbeck	time_t		now;
1f68c1d4Sbeck	int		r;
2364f7c1Sitojun	struct addrinfo hints, *res;
1f68c1d4Sbeck
1f68c1d4Sbeck	now = time(NULL);
0cf15a29Sitojun	memset(&hints, 0, sizeof(hints));
85714724Sitojun	hints.ai_family = PF_UNSPEC;
85714724Sitojun	hints.ai_socktype = SOCK_DGRAM;	/*dummy*/
85714724Sitojun	hints.ai_flags = AI_NUMERICHOST;
d0872fbcSbeck	if (add && (type == TRAPHIT || type == WHITE)) {
2364f7c1Sitojun		if (getaddrinfo(ip, NULL, &hints, &res) != 0) {
44dd9caeSotto			warnx("invalid ip address %s", ip);
1f68c1d4Sbeck			goto bad;
1f68c1d4Sbeck		}
2364f7c1Sitojun		freeaddrinfo(res);
1e913b92Sbeck	}
1f68c1d4Sbeck	memset(&dbk, 0, sizeof(dbk));
1f68c1d4Sbeck	dbk.size = strlen(ip);
1f68c1d4Sbeck	dbk.data = ip;
1f68c1d4Sbeck	memset(&dbd, 0, sizeof(dbd));
1f68c1d4Sbeck	if (!add) {
1e913b92Sbeck		/* remove entry */
88a0bb7eSmillert		if (type == GREY) {
88a0bb7eSmillert			for (r = db->seq(db, &dbk, &dbd, R_FIRST); !r;
88a0bb7eSmillert			    r = db->seq(db, &dbk, &dbd, R_NEXT)) {
88a0bb7eSmillert				char *cp = memchr(dbk.data, '\n', dbk.size);
88a0bb7eSmillert				if (cp != NULL) {
88a0bb7eSmillert					size_t len = cp - (char *)dbk.data;
88a0bb7eSmillert					if (memcmp(ip, dbk.data, len) == 0 &&
88a0bb7eSmillert					    ip[len] == '\0')
88a0bb7eSmillert						break;
88a0bb7eSmillert				}
88a0bb7eSmillert			}
88a0bb7eSmillert		} else {
1f68c1d4Sbeck			r = db->get(db, &dbk, &dbd, 0);
1f68c1d4Sbeck			if (r == -1) {
1f68c1d4Sbeck				warn("db->get failed");
1f68c1d4Sbeck				goto bad;
1f68c1d4Sbeck			}
88a0bb7eSmillert		}
1f68c1d4Sbeck		if (r) {
1f68c1d4Sbeck			warnx("no entry for %s", ip);
1f68c1d4Sbeck			goto bad;
1f68c1d4Sbeck		} else if (db->del(db, &dbk, 0)) {
1f68c1d4Sbeck			warn("db->del failed");
1f68c1d4Sbeck			goto bad;
1f68c1d4Sbeck		}
1f68c1d4Sbeck	} else {
1e913b92Sbeck		/* add or update entry */
1f68c1d4Sbeck		r = db->get(db, &dbk, &dbd, 0);
1f68c1d4Sbeck		if (r == -1) {
1f68c1d4Sbeck			warn("db->get failed");
1f68c1d4Sbeck			goto bad;
1f68c1d4Sbeck		}
1f68c1d4Sbeck		if (r) {
1e913b92Sbeck			int i;
1e913b92Sbeck
1f68c1d4Sbeck			/* new entry */
1f68c1d4Sbeck			memset(&gd, 0, sizeof(gd));
1f68c1d4Sbeck			gd.first = now;
1f68c1d4Sbeck			gd.bcount = 1;
1e913b92Sbeck			switch (type) {
1e913b92Sbeck			case WHITE:
1f68c1d4Sbeck				gd.pass = now;
1f68c1d4Sbeck				gd.expire = now + WHITEEXP;
1e913b92Sbeck				break;
1e913b92Sbeck			case TRAPHIT:
1e913b92Sbeck				gd.expire = now + TRAPEXP;
1e913b92Sbeck				gd.pcount = -1;
1e913b92Sbeck				break;
1e913b92Sbeck			case SPAMTRAP:
1e913b92Sbeck				gd.expire = 0;
1e913b92Sbeck				gd.pcount = -2;
a574b422Smillert				/* ensure address is of the form user@host */
a574b422Smillert				if (strchr(ip, '@') == NULL)
a574b422Smillert					errx(-1, "not an email address: %s", ip);
1e913b92Sbeck				/* ensure address is lower case*/
1e913b92Sbeck				for (i = 0; ip[i] != '\0'; i++)
2bfe0399Sderaadt					if (isupper((unsigned char)ip[i]))
2bfe0399Sderaadt						ip[i] = tolower((unsigned char)ip[i]);
1e913b92Sbeck				break;
1e913b92Sbeck			default:
1e913b92Sbeck				errx(-1, "unknown type %d", type);
1e913b92Sbeck			}
1f68c1d4Sbeck			memset(&dbk, 0, sizeof(dbk));
1f68c1d4Sbeck			dbk.size = strlen(ip);
1f68c1d4Sbeck			dbk.data = ip;
1f68c1d4Sbeck			memset(&dbd, 0, sizeof(dbd));
1f68c1d4Sbeck			dbd.size = sizeof(gd);
1f68c1d4Sbeck			dbd.data = &gd;
1f68c1d4Sbeck			r = db->put(db, &dbk, &dbd, 0);
1f68c1d4Sbeck			if (r) {
1f68c1d4Sbeck				warn("db->put failed");
1f68c1d4Sbeck				goto bad;
1f68c1d4Sbeck			}
1f68c1d4Sbeck		} else {
51210d5cSmillert			if (gdcopyin(&dbd, &gd) == -1) {
1f68c1d4Sbeck				/* whatever this is, it doesn't belong */
1f68c1d4Sbeck				db->del(db, &dbk, 0);
1f68c1d4Sbeck				goto bad;
1f68c1d4Sbeck			}
1f68c1d4Sbeck			gd.pcount++;
1e913b92Sbeck			switch (type) {
1e913b92Sbeck			case WHITE:
1e913b92Sbeck				gd.pass = now;
1f68c1d4Sbeck				gd.expire = now + WHITEEXP;
1e913b92Sbeck				break;
1e913b92Sbeck			case TRAPHIT:
1e913b92Sbeck				gd.expire = now + TRAPEXP;
1e913b92Sbeck				gd.pcount = -1;
1e913b92Sbeck				break;
1e913b92Sbeck			case SPAMTRAP:
1e913b92Sbeck				gd.expire = 0; /* XXX */
1e913b92Sbeck				gd.pcount = -2;
1e913b92Sbeck				break;
1e913b92Sbeck			default:
1e913b92Sbeck				errx(-1, "unknown type %d", type);
1e913b92Sbeck			}
1e913b92Sbeck
1f68c1d4Sbeck			memset(&dbk, 0, sizeof(dbk));
1f68c1d4Sbeck			dbk.size = strlen(ip);
1f68c1d4Sbeck			dbk.data = ip;
1f68c1d4Sbeck			memset(&dbd, 0, sizeof(dbd));
1f68c1d4Sbeck			dbd.size = sizeof(gd);
1f68c1d4Sbeck			dbd.data = &gd;
1f68c1d4Sbeck			r = db->put(db, &dbk, &dbd, 0);
1f68c1d4Sbeck			if (r) {
1f68c1d4Sbeck				warn("db->put failed");
1f68c1d4Sbeck				goto bad;
1f68c1d4Sbeck			}
1f68c1d4Sbeck		}
1f68c1d4Sbeck	}
1f68c1d4Sbeck	return (0);
1f68c1d4Sbeck bad:
44dd9caeSotto	return (1);
1f68c1d4Sbeck}
1f68c1d4Sbeck
1f68c1d4Sbeckint
de9ad6b5Smillertprint_entry(DBT *dbk, DBT *dbd)
1f68c1d4Sbeck{
1f68c1d4Sbeck	struct gdata gd;
1f68c1d4Sbeck	char *a, *cp;
1f68c1d4Sbeck
de9ad6b5Smillert	if ((dbk->size < 1) || gdcopyin(dbd, &gd) == -1) {
de9ad6b5Smillert		warnx("bogus size db entry - bad db file?");
de9ad6b5Smillert		return (1);
1f68c1d4Sbeck	}
de9ad6b5Smillert	a = malloc(dbk->size + 1);
1f68c1d4Sbeck	if (a == NULL)
1f68c1d4Sbeck		err(1, "malloc");
de9ad6b5Smillert	memcpy(a, dbk->data, dbk->size);
de9ad6b5Smillert	a[dbk->size]='\0';
1f68c1d4Sbeck	cp = strchr(a, '\n');
1e913b92Sbeck	if (cp == NULL) {
1e913b92Sbeck		/* this is a non-greylist entry */
1e913b92Sbeck		switch (gd.pcount) {
1e913b92Sbeck		case -1: /* spamtrap hit, with expiry time */
9d683440Sotto			printf("TRAPPED|%s|%lld\n", a,
9d683440Sotto			    (long long)gd.expire);
1e913b92Sbeck			break;
1e913b92Sbeck		case -2: /* spamtrap address */
1e913b92Sbeck			printf("SPAMTRAP|%s\n", a);
1e913b92Sbeck			break;
1e913b92Sbeck		default: /* whitelist */
9d683440Sotto			printf("WHITE|%s|||%lld|%lld|%lld|%d|%d\n", a,
9d683440Sotto			    (long long)gd.first, (long long)gd.pass,
9d683440Sotto			    (long long)gd.expire, gd.bcount,
1e913b92Sbeck			    gd.pcount);
1e913b92Sbeck			break;
1e913b92Sbeck		}
1e913b92Sbeck	} else {
5b0222eaSbeck		char *helo, *from, *to;
1f68c1d4Sbeck
1f68c1d4Sbeck		/* greylist entry */
1f68c1d4Sbeck		*cp = '\0';
5b0222eaSbeck		helo = cp + 1;
5b0222eaSbeck		from = strchr(helo, '\n');
5b0222eaSbeck		if (from == NULL) {
1f68c1d4Sbeck			warnx("No from part in grey key %s", a);
f08b6076Sbeck			free(a);
de9ad6b5Smillert			return (1);
1f68c1d4Sbeck		}
5b0222eaSbeck		*from = '\0';
5b0222eaSbeck		from++;
5b0222eaSbeck		to = strchr(from, '\n');
5b0222eaSbeck		if (to == NULL) {
5b0222eaSbeck			/* probably old format - print it the
5b0222eaSbeck			 * with an empty HELO field instead
5b0222eaSbeck			 * of erroring out.
5b0222eaSbeck			 */
9d683440Sotto			printf("GREY|%s|%s|%s|%s|%lld|%lld|%lld|%d|%d\n",
9d683440Sotto			    a, "", helo, from, (long long)gd.first,
9d683440Sotto			    (long long)gd.pass, (long long)gd.expire,
9d683440Sotto			    gd.bcount, gd.pcount);
5b0222eaSbeck
5b0222eaSbeck		} else {
1f68c1d4Sbeck			*to = '\0';
1f68c1d4Sbeck			to++;
9d683440Sotto			printf("GREY|%s|%s|%s|%s|%lld|%lld|%lld|%d|%d\n",
9d683440Sotto			    a, helo, from, to, (long long)gd.first,
9d683440Sotto			    (long long)gd.pass, (long long)gd.expire,
9d683440Sotto			    gd.bcount, gd.pcount);
5b0222eaSbeck		}
1f68c1d4Sbeck	}
f08b6076Sbeck	free(a);
de9ad6b5Smillert
de9ad6b5Smillert	return (0);
de9ad6b5Smillert}
de9ad6b5Smillert
de9ad6b5Smillertint
de9ad6b5Smillertdblist(DB *db)
de9ad6b5Smillert{
de9ad6b5Smillert	DBT		dbk, dbd;
de9ad6b5Smillert	int		r;
de9ad6b5Smillert
de9ad6b5Smillert	/* walk db, list in text format */
de9ad6b5Smillert	memset(&dbk, 0, sizeof(dbk));
de9ad6b5Smillert	memset(&dbd, 0, sizeof(dbd));
de9ad6b5Smillert	for (r = db->seq(db, &dbk, &dbd, R_FIRST); !r;
de9ad6b5Smillert	    r = db->seq(db, &dbk, &dbd, R_NEXT)) {
de9ad6b5Smillert		if (print_entry(&dbk, &dbd) != 0) {
de9ad6b5Smillert			r = -1;
de9ad6b5Smillert			break;
de9ad6b5Smillert		}
1f68c1d4Sbeck	}
1f68c1d4Sbeck	db->close(db);
84d82a5fSderaadt	db = NULL;
de9ad6b5Smillert	return (r == -1);
de9ad6b5Smillert}
de9ad6b5Smillert
de9ad6b5Smillertint
de9ad6b5Smillertdbshow(DB *db, char **addrs)
de9ad6b5Smillert{
de9ad6b5Smillert	DBT dbk, dbd;
de9ad6b5Smillert	int errors = 0;
de9ad6b5Smillert	char *a;
de9ad6b5Smillert
de9ad6b5Smillert	/* look up each addr */
de9ad6b5Smillert	while ((a = *addrs) != NULL) {
de9ad6b5Smillert		memset(&dbk, 0, sizeof(dbk));
de9ad6b5Smillert		dbk.size = strlen(a);
de9ad6b5Smillert		dbk.data = a;
de9ad6b5Smillert		memset(&dbd, 0, sizeof(dbd));
de9ad6b5Smillert		switch (db->get(db, &dbk, &dbd, 0)) {
de9ad6b5Smillert		case -1:
de9ad6b5Smillert			warn("db->get failed");
de9ad6b5Smillert			errors++;
de9ad6b5Smillert			goto done;
de9ad6b5Smillert		case 0:
de9ad6b5Smillert			if (print_entry(&dbk, &dbd) != 0) {
de9ad6b5Smillert				errors++;
de9ad6b5Smillert				goto done;
de9ad6b5Smillert			}
de9ad6b5Smillert			break;
de9ad6b5Smillert		case 1:
de9ad6b5Smillert		default:
de9ad6b5Smillert			/* not found */
de9ad6b5Smillert			errors++;
de9ad6b5Smillert			break;
de9ad6b5Smillert		}
de9ad6b5Smillert		addrs++;
de9ad6b5Smillert	}
de9ad6b5Smillert done:
1f68c1d4Sbeck	db->close(db);
84d82a5fSderaadt	db = NULL;
de9ad6b5Smillert	return (errors);
1f68c1d4Sbeck}
1f68c1d4Sbeck
44dd9caeSottoextern char *__progname;
44dd9caeSotto
1f68c1d4Sbeckstatic int
1f68c1d4Sbeckusage(void)
1f68c1d4Sbeck{
de9ad6b5Smillert	fprintf(stderr, "usage: %s [-adGTt] [keys ...]\n", __progname);
84d82a5fSderaadt	exit(1);
1d7c8e7dSdhill	/* NOTREACHED */
1f68c1d4Sbeck}
1f68c1d4Sbeck
1f68c1d4Sbeckint
1f68c1d4Sbeckmain(int argc, char **argv)
1f68c1d4Sbeck{
e1fc2954Scnst	int i, ch, action = 0, type = WHITE, r = 0, c = 0;
4020b879Sbeck	HASHINFO	hashinfo;
d0872fbcSbeck	DB		*db;
1f68c1d4Sbeck
88a0bb7eSmillert	while ((ch = getopt(argc, argv, "adGtT")) != -1) {
1f68c1d4Sbeck		switch (ch) {
1f68c1d4Sbeck		case 'a':
1f68c1d4Sbeck			action = 1;
1f68c1d4Sbeck			break;
1f68c1d4Sbeck		case 'd':
1f68c1d4Sbeck			action = 2;
1f68c1d4Sbeck			break;
88a0bb7eSmillert		case 'G':
88a0bb7eSmillert			type = GREY;
88a0bb7eSmillert			break;
1e913b92Sbeck		case 't':
1e913b92Sbeck			type = TRAPHIT;
1e913b92Sbeck			break;
1e913b92Sbeck		case 'T':
1e913b92Sbeck			type = SPAMTRAP;
1e913b92Sbeck			break;
1f68c1d4Sbeck		default:
1f68c1d4Sbeck			usage();
1f68c1d4Sbeck			break;
1f68c1d4Sbeck		}
1f68c1d4Sbeck	}
d0872fbcSbeck	argc -= optind;
d0872fbcSbeck	argv += optind;
03ac6a35Smillert	if (action == 0 && type != WHITE)
03ac6a35Smillert		usage();
d0872fbcSbeck
4020b879Sbeck	memset(&hashinfo, 0, sizeof(hashinfo));
6a594376Sotto	db = dbopen(PATH_SPAMD_DB, O_EXLOCK | (action ? O_RDWR : O_RDONLY),
6a594376Sotto	    0600, DB_HASH, &hashinfo);
4020b879Sbeck	if (db == NULL) {
6a594376Sotto		err(1, "cannot open %s for %s", PATH_SPAMD_DB,
6a594376Sotto		    action ? "writing" : "reading");
4020b879Sbeck	}
1f68c1d4Sbeck
aa29652cSmestre	if (pledge("stdio", NULL) == -1)
8a51f366Smestre		err(1, "pledge");
1a6938c5Sderaadt
1f68c1d4Sbeck	switch (action) {
1f68c1d4Sbeck	case 0:
de9ad6b5Smillert		if (argc)
de9ad6b5Smillert			return dbshow(db, argv);
de9ad6b5Smillert		else
d0872fbcSbeck			return dblist(db);
1f68c1d4Sbeck	case 1:
88a0bb7eSmillert		if (type == GREY)
88a0bb7eSmillert			errx(2, "cannot add GREY entries");
d0872fbcSbeck		for (i=0; i<argc; i++)
e1fc2954Scnst			if (argv[i][0] != '\0') {
e1fc2954Scnst				c++;
d0872fbcSbeck				r += dbupdate(db, argv[i], 1, type);
e1fc2954Scnst			}
e1fc2954Scnst		if (c == 0)
e1fc2954Scnst			errx(2, "no addresses specified");
d0872fbcSbeck		break;
1f68c1d4Sbeck	case 2:
d0872fbcSbeck		for (i=0; i<argc; i++)
e1fc2954Scnst			if (argv[i][0] != '\0') {
e1fc2954Scnst				c++;
d0872fbcSbeck				r += dbupdate(db, argv[i], 0, type);
e1fc2954Scnst			}
e1fc2954Scnst		if (c == 0)
e1fc2954Scnst			errx(2, "no addresses specified");
d0872fbcSbeck		break;
1f68c1d4Sbeck	default:
1f68c1d4Sbeck		errx(-1, "bad action");
1f68c1d4Sbeck	}
d0872fbcSbeck	db->close(db);
d0872fbcSbeck	return (r);
1f68c1d4Sbeck}