Move some DBM functions to Qpsmptd::DB::File::DBM
Not everything is moved and Qpsmtpd::DB* does not yet have test coverage
This commit is contained in:
Jared Johnson
parent
4108a64c99
commit
1d29db66ff
21
lib/Qpsmtpd/DB.pm
Normal file
21
lib/Qpsmtpd/DB.pm
Normal file
@ -0,0 +1,21 @@
|
||||
package Qpsmtpd::DB;
|
||||
use strict;
|
||||
use warnings;
|
||||
use Qpsmtpd::DB::File::DBM;
|
||||
|
||||
sub new {
|
||||
my ( $class, %arg ) = @_;
|
||||
# The only supported class just now
|
||||
return bless { %arg }, 'Qpsmtpd::DB::File::DBM';
|
||||
}
|
||||
|
||||
# noop default method for plugins that don't require locking
|
||||
sub get_lock { 1 }
|
||||
|
||||
sub name {
|
||||
my ( $self, $name ) = @_;
|
||||
return $self->{name} = $name if $name;
|
||||
return $self->{name};
|
||||
}
|
||||
|
||||
1;
|
||||
35
lib/Qpsmtpd/DB/File.pm
Normal file
35
lib/Qpsmtpd/DB/File.pm
Normal file
@ -0,0 +1,35 @@
|
||||
package Qpsmtpd::DB::File;
|
||||
use strict;
|
||||
use warnings;
|
||||
use lib 'lib';
|
||||
use parent 'Qpsmtpd::DB';
|
||||
|
||||
sub dir {
|
||||
my ( $self, @candidate_dirs ) = @_;
|
||||
return $self->{dir} if $self->{dir} and ! @candidate_dirs;
|
||||
push @candidate_dirs, ( $self->qphome . '/var/db', $self->qphome . '/config' );
|
||||
for my $d ( @candidate_dirs ) {
|
||||
next if ! $self->validate_dir($d);
|
||||
return $self->{dir} = $d; # first match wins
|
||||
}
|
||||
}
|
||||
|
||||
sub validate_dir {
|
||||
my ( $self, $d ) = @_;
|
||||
return 0 if ! $d;
|
||||
return 0 if ! -d $d;
|
||||
return 1;
|
||||
}
|
||||
|
||||
sub qphome {
|
||||
my ( $self ) = @_;
|
||||
my ($QPHOME) = ($0 =~ m!(.*?)/([^/]+)$!);
|
||||
return $QPHOME;
|
||||
}
|
||||
|
||||
sub path {
|
||||
my ( $self ) = @_;
|
||||
return $self->dir . '/' . $self->name . $self->file_extension;
|
||||
}
|
||||
|
||||
1;
|
||||
67
lib/Qpsmtpd/DB/File/DBM.pm
Normal file
67
lib/Qpsmtpd/DB/File/DBM.pm
Normal file
@ -0,0 +1,67 @@
|
||||
package Qpsmtpd::DB::File::DBM;
|
||||
use strict;
|
||||
use warnings;
|
||||
|
||||
use lib 'lib';
|
||||
use parent 'Qpsmtpd::DB::File';
|
||||
|
||||
BEGIN { @AnyDBM_File::ISA = qw(DB_File GDBM_File NDBM_File) }
|
||||
use AnyDBM_File;
|
||||
use Fcntl qw(:DEFAULT :flock LOCK_EX LOCK_NB);
|
||||
|
||||
sub file_extension {
|
||||
my ( $self, $extension ) = @_;
|
||||
return $self->{file_extension} ||= '.dbm';
|
||||
}
|
||||
|
||||
sub get_lock {
|
||||
my ( $self ) = @_;
|
||||
my $db_file = $self->path;
|
||||
return $self->get_nfs_lock if $self->nfs_locking;
|
||||
open(my $lock, '>', "$db_file.lock") or do {
|
||||
warn "opening lockfile failed: $!\n";
|
||||
return;
|
||||
};
|
||||
|
||||
flock($lock, LOCK_EX) or do {
|
||||
warn "flock of lockfile failed: $!\n";
|
||||
close $lock;
|
||||
return;
|
||||
};
|
||||
|
||||
return $lock;
|
||||
}
|
||||
|
||||
sub get_nfs_lock {
|
||||
my ( $self ) = @_;
|
||||
my $db_file = $self->path;
|
||||
|
||||
require File::NFSLock;
|
||||
|
||||
### set up a lock - lasts until object looses scope
|
||||
my $nfslock = new File::NFSLock {
|
||||
file => "$db_file.lock",
|
||||
lock_type => LOCK_EX | LOCK_NB,
|
||||
blocking_timeout => 10, # 10 sec
|
||||
stale_lock_timeout => 30 * 60, # 30 min
|
||||
}
|
||||
or do {
|
||||
warn "nfs lockfile failed: $!\n";
|
||||
return;
|
||||
};
|
||||
|
||||
open(my $lock, '+<', "$db_file.lock") or do {
|
||||
warn "opening nfs lockfile failed: $!\n";
|
||||
return;
|
||||
};
|
||||
|
||||
return $lock;
|
||||
}
|
||||
|
||||
sub nfs_locking {
|
||||
my $self = shift;
|
||||
return $self->{nfs_locking} if ! @_;
|
||||
return $self->{nfs_locking} = shift;
|
||||
}
|
||||
|
||||
1;
|
||||
@ -346,4 +346,9 @@ sub _register_standard_hooks {
|
||||
}
|
||||
}
|
||||
|
||||
sub db {
|
||||
my ( $self, %arg ) = @_;
|
||||
return $self->{db} ||= Qpsmtpd::DB->new(%arg);
|
||||
}
|
||||
|
||||
1;
|
||||
|
||||
@ -175,16 +175,14 @@ use warnings;
|
||||
use Net::IP;
|
||||
|
||||
use Qpsmtpd::Constants;
|
||||
use Qpsmtpd::DB;
|
||||
|
||||
my $VERSION = '0.12';
|
||||
|
||||
BEGIN { @AnyDBM_File::ISA = qw(DB_File GDBM_File NDBM_File) }
|
||||
use AnyDBM_File;
|
||||
use Fcntl qw(:DEFAULT :flock LOCK_EX LOCK_NB);
|
||||
|
||||
my $DENYMSG = "This mail is temporarily denied";
|
||||
my ($QPHOME) = ($0 =~ m!(.*?)/([^/]+)$!);
|
||||
my $DB = "greylist.dbm";
|
||||
my %PERMITTED_ARGS = map { $_ => 1 } qw(per_recipient remote_ip sender
|
||||
recipient black_timeout grey_timeout white_timeout deny_late db_dir
|
||||
nfslock p0f reject loglevel geoip upgrade );
|
||||
@ -224,6 +222,7 @@ sub register {
|
||||
else {
|
||||
$self->register_hook('rcpt', 'rcpt_handler');
|
||||
}
|
||||
$self->init_db();
|
||||
$self->prune_db();
|
||||
if ($self->{_args}{upgrade}) {
|
||||
$self->convert_db();
|
||||
@ -231,6 +230,25 @@ sub register {
|
||||
$self->load_exclude_files();
|
||||
}
|
||||
|
||||
sub init_db {
|
||||
my ( $self ) = @_;
|
||||
$self->db( name => 'greylist' );
|
||||
return if ! $self->db->can('path');
|
||||
my $cdir = $self->{_args}{db_dir};
|
||||
$cdir = $1 if $cdir and $cdir =~ m{^([-a-zA-Z0-9./_]+)$};
|
||||
# greylisting-specific hints for where to store the greylist DB
|
||||
my $db_dir = $self->db->dir( $cdir, '/var/lib/qpsmtpd/greylisting' );
|
||||
|
||||
return if $self->db->file_extension ne '.dbm';
|
||||
$self->db->nfs_locking( $self->{_args}{nfslock} );
|
||||
|
||||
# Work around old DBM filename
|
||||
return if -f "$db_dir/greylist.dbm";
|
||||
my $oldname = 'denysoft_greylist';
|
||||
return if ! -f "$db_dir/$oldname.dbm";
|
||||
$self->db->name($oldname);
|
||||
}
|
||||
|
||||
sub load_exclude_files {
|
||||
my ( $self ) = @_;
|
||||
$self->load_exclude_file($_) for $self->qp->config('greylist_exclude_files');
|
||||
@ -337,8 +355,9 @@ sub greylist {
|
||||
|
||||
return DECLINED if $self->exclude();
|
||||
|
||||
my $db = $self->get_dbm_location();
|
||||
my $lock = $self->get_dbm_lock($db) or return DECLINED;
|
||||
|
||||
my $lock = $self->db->get_lock() or return DECLINED;
|
||||
my $db = $self->db->path;
|
||||
my $tied = $self->get_dbm_tie($db, $lock) or return DECLINED;
|
||||
my $key = $self->get_greylist_key($sender, $rcpt) or return DECLINED;
|
||||
|
||||
@ -428,86 +447,11 @@ sub get_dbm_tie {
|
||||
return \%db;
|
||||
}
|
||||
|
||||
sub get_dbm_location {
|
||||
my $self = shift;
|
||||
|
||||
my $transaction = $self->qp->transaction;
|
||||
my $config = $self->{_args};
|
||||
|
||||
if ($config->{db_dir} && $config->{db_dir} =~ m{^([-a-zA-Z0-9./_]+)$}) {
|
||||
$config->{db_dir} = $1;
|
||||
}
|
||||
|
||||
my @candidate_dirs = (
|
||||
$config->{db_dir},
|
||||
"/var/lib/qpsmtpd/greylisting",
|
||||
"$QPHOME/var/db", "$QPHOME/config", '.'
|
||||
);
|
||||
|
||||
my $dbdir;
|
||||
for my $d (@candidate_dirs) {
|
||||
next if !$d || !-d $d; # impossible
|
||||
$dbdir = $d;
|
||||
last; # first match wins
|
||||
}
|
||||
my $db = "$dbdir/$DB";
|
||||
if (!-f $db && -f "$dbdir/denysoft_greylist.dbm") {
|
||||
$db = "$dbdir/denysoft_greylist.dbm"; # old DB name
|
||||
}
|
||||
$self->log(LOGDEBUG, "using $db as greylisting database");
|
||||
return $db;
|
||||
}
|
||||
|
||||
sub get_dbm_lock {
|
||||
my ($self, $db) = @_;
|
||||
|
||||
return $self->get_dbm_lock_nfs($db) if $self->{_args}{nfslock};
|
||||
|
||||
# Check denysoft db
|
||||
open(my $lock, '>', "$db.lock") or do {
|
||||
$self->log(LOGCRIT, "opening lockfile failed: $!");
|
||||
return;
|
||||
};
|
||||
|
||||
flock($lock, LOCK_EX) or do {
|
||||
$self->log(LOGCRIT, "flock of lockfile failed: $!");
|
||||
close $lock;
|
||||
return;
|
||||
};
|
||||
|
||||
return $lock;
|
||||
}
|
||||
|
||||
sub get_dbm_lock_nfs {
|
||||
my ($self, $db) = @_;
|
||||
|
||||
require File::NFSLock;
|
||||
|
||||
### set up a lock - lasts until object looses scope
|
||||
my $nfslock = new File::NFSLock {
|
||||
file => "$db.lock",
|
||||
lock_type => LOCK_EX | LOCK_NB,
|
||||
blocking_timeout => 10, # 10 sec
|
||||
stale_lock_timeout => 30 * 60, # 30 min
|
||||
}
|
||||
or do {
|
||||
$self->log(LOGCRIT, "nfs lockfile failed: $!");
|
||||
return;
|
||||
};
|
||||
|
||||
open(my $lock, '+<', "$db.lock") or do {
|
||||
$self->log(LOGCRIT, "opening nfs lockfile failed: $!");
|
||||
return;
|
||||
};
|
||||
|
||||
return $lock;
|
||||
}
|
||||
|
||||
sub convert_db {
|
||||
my $self = shift;
|
||||
|
||||
my $db = $self->get_dbm_location();
|
||||
my $lock = $self->get_dbm_lock($db) or return DECLINED;
|
||||
my $lock = $self->db->get_lock() or return DECLINED;
|
||||
my $db = $self->db->path();
|
||||
my $tied = $self->get_dbm_tie($db, $lock) or return DECLINED;
|
||||
my $count = keys %$tied;
|
||||
|
||||
@ -531,8 +475,8 @@ sub convert_db {
|
||||
sub prune_db {
|
||||
my $self = shift;
|
||||
|
||||
my $db = $self->get_dbm_location();
|
||||
my $lock = $self->get_dbm_lock($db) or return DECLINED;
|
||||
my $lock = $self->db->get_lock() or return DECLINED;
|
||||
my $db = $self->db->path;
|
||||
my $tied = $self->get_dbm_tie($db, $lock) or return DECLINED;
|
||||
my $count = keys %$tied;
|
||||
|
||||
|
||||
@ -19,7 +19,6 @@ sub register_tests {
|
||||
$self->register_test("test_load_exclude_files");
|
||||
$self->register_test('test_hook_data');
|
||||
$self->register_test('test_get_greylist_key');
|
||||
$self->register_test('test_get_dbm_location');
|
||||
$self->register_test('test_exclude');
|
||||
$self->register_test("test_greylist_geoip");
|
||||
$self->register_test("test_greylist_p0f_genre");
|
||||
@ -130,13 +129,6 @@ sub test_get_greylist_key {
|
||||
cmp_ok( $key, 'eq', "3232235777:$test_email:$test_email", "db key: $key");
|
||||
}
|
||||
|
||||
sub test_get_dbm_location {
|
||||
my $self = shift;
|
||||
|
||||
my $db = $self->get_dbm_location();
|
||||
ok( $db, "db location: $db");
|
||||
}
|
||||
|
||||
sub test_exclude {
|
||||
my ( $self ) = @_;
|
||||
|
||||
|
||||
Loading…
Reference in New Issue
Block a user