mirrors/AdGuardHome
1
0
Fork 0
mirror of https://github.com/AdguardTeam/AdGuardHome.git synced 2024-11-21 20:45:33 +03:00
Code Issues Projects Releases Packages Wiki Activity

Pull request 1753: imp-filtering-cyclo

Browse source 
Merge in DNS/adguard-home from imp-filtering-cyclo to master

Squashed commit of the following:

commit ca97d7acc9893c489800bbbc41e71ccf686c8f07
Author: Ainar Garipov <A.Garipov@AdGuard.COM>
Date:   Tue Feb 28 15:16:34 2023 +0300

    filtering: imp cyclo
This commit is contained in:
Ainar Garipov 2023-02-28 16:34:11 +03:00
parent a772212d05
commit bb226434f8
2 changed files with 44 additions and 28 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

69
internal/filtering/filtering.go
View file

@ -420,11 +420,11 @@ type ResultRule struct {
// Result contains the result of a request check. // Result contains the result of a request check.
// //
// All fields transitively have omitempty tags so that the query log // All fields transitively have omitempty tags so that the query log doesn't
// doesn't become too large. // become too large.
// //
// TODO(a.garipov): Clarify relationships between fields. Perhaps // TODO(a.garipov): Clarify relationships between fields. Perhaps replace with
// replace with a sum type or an interface? // a sum type or an interface?
type Result struct { type Result struct {
// DNSRewriteResult is the $dnsrewrite filter rule result. // DNSRewriteResult is the $dnsrewrite filter rule result.
DNSRewriteResult *DNSRewriteResult `json:",omitempty"` DNSRewriteResult *DNSRewriteResult `json:",omitempty"`
@ -813,17 +813,18 @@ func (d *DNSFilter) matchHostProcessDNSResult(
return res return res
} }
if dnsres.HostRulesV4 != nil || dnsres.HostRulesV6 != nil { return hostResultForOtherQType(dnsres)
// Question type doesn't match the host rules. Return the first matched }
// host rule, but without an IP address.
var matchedRules []rules.Rule
if dnsres.HostRulesV4 != nil {
matchedRules = []rules.Rule{dnsres.HostRulesV4[0]}
} else if dnsres.HostRulesV6 != nil {
matchedRules = []rules.Rule{dnsres.HostRulesV6[0]}
}
return makeResult(matchedRules, FilteredBlockList) // hostResultForOtherQType returns a result based on the host rules in dnsres,
// if any. dnsres.HostRulesV4 take precedence over dnsres.HostRulesV6.
func hostResultForOtherQType(dnsres *urlfilter.DNSResult) (res Result) {
if len(dnsres.HostRulesV4) != 0 {
return makeResult([]rules.Rule{dnsres.HostRulesV4[0]}, FilteredBlockList)
}
if len(dnsres.HostRulesV6) != 0 {
return makeResult([]rules.Rule{dnsres.HostRulesV6[0]}, FilteredBlockList)
} }
return Result{} return Result{}
@ -840,7 +841,7 @@ func (d *DNSFilter) matchHost(
return Result{}, nil return Result{}, nil
} }
ureq := &urlfilter.DNSRequest{ ufReq := &urlfilter.DNSRequest{
Hostname: host, Hostname: host,
SortedClientTags: setts.ClientTags, SortedClientTags: setts.ClientTags,
// TODO(e.burkov): Wait for urlfilter update to pass net.IP. // TODO(e.burkov): Wait for urlfilter update to pass net.IP.
@ -857,7 +858,7 @@ func (d *DNSFilter) matchHost(
defer d.engineLock.RUnlock() defer d.engineLock.RUnlock()
if setts.ProtectionEnabled && d.filteringEngineAllow != nil { if setts.ProtectionEnabled && d.filteringEngineAllow != nil {
dnsres, ok := d.filteringEngineAllow.MatchRequest(ureq) dnsres, ok := d.filteringEngineAllow.MatchRequest(ufReq)
if ok { if ok {
return d.matchHostProcessAllowList(host, dnsres) return d.matchHostProcessAllowList(host, dnsres)
} }
@ -867,17 +868,13 @@ func (d *DNSFilter) matchHost(
return Result{}, nil return Result{}, nil
} }
dnsres, ok := d.filteringEngine.MatchRequest(ureq) dnsres, matchedEngine := d.filteringEngine.MatchRequest(ufReq)
// Check DNS rewrites first, because the API there is a bit awkward. // Check DNS rewrites first, because the API there is a bit awkward.
if dnsr := dnsres.DNSRewrites(); len(dnsr) > 0 { dnsRWRes := d.processDNSResultRewrites(dnsres, host)
res = d.processDNSRewrites(dnsr) if dnsRWRes.Reason != NotFilteredNotFound {
if res.Reason == RewrittenRule && res.CanonName == host { return dnsRWRes, nil
// A rewrite of a host to itself. Go on and try matching other } else if !matchedEngine {
// things.
} else {
return res, nil
}
} else if !ok {
return Result{}, nil return Result{}, nil
} }
@ -899,6 +896,26 @@ func (d *DNSFilter) matchHost(
return res, nil return res, nil
} }
// processDNSResultRewrites returns an empty Result if there are no dnsrewrite
// rules in dnsres. Otherwise, it returns the processed Result.
func (d *DNSFilter) processDNSResultRewrites(
dnsres *urlfilter.DNSResult,
host string,
) (dnsRWRes Result) {
dnsr := dnsres.DNSRewrites()
if len(dnsr) == 0 {
return Result{}
}
res := d.processDNSRewrites(dnsr)
if res.Reason == RewrittenRule && res.CanonName == host {
// A rewrite of a host to itself. Go on and try matching other things.
return Result{}
}
return res
}
// makeResult returns a properly constructed Result. // makeResult returns a properly constructed Result.
func makeResult(matchedRules []rules.Rule, reason Reason) (res Result) { func makeResult(matchedRules []rules.Rule, reason Reason) (res Result) {
resRules := make([]*ResultRule, len(matchedRules)) resRules := make([]*ResultRule, len(matchedRules))

3
scripts/make/go-lint.sh
View file

@ -164,7 +164,6 @@ run_linter govulncheck ./...
run_linter gocyclo --over 14 ./internal/querylog/ run_linter gocyclo --over 14 ./internal/querylog/
run_linter gocyclo --over 13\ run_linter gocyclo --over 13\
./internal/dhcpd\ ./internal/dhcpd\
./internal/filtering/\
./internal/home/\ ./internal/home/\
; ;
@ -175,7 +174,7 @@ run_linter gocyclo --over 10\
./internal/aghos/\ ./internal/aghos/\
./internal/aghtest/\ ./internal/aghtest/\
./internal/dnsforward/\ ./internal/dnsforward/\
./internal/filtering/rewrite/\ ./internal/filtering/\
./internal/stats/\ ./internal/stats/\
./internal/tools/\ ./internal/tools/\
./internal/updater/\ ./internal/updater/\