fix: Rule-Set中不解析DNS

adlyq · adlyq · commit 8b09db5f7f72 · 2022-05-18T18:43:44.000+08:00
feat: RULE-SET支持no-resolve
diff --git a/component/sniffer/dispatcher.go b/component/sniffer/dispatcher.go
@@ -117,13 +117,13 @@ func (sd *SnifferDispatcher) sniffDomain(conn *CN.BufferedConn, metadata *C.Meta
 
 			host, err := sniffer.SniffTCP(bytes)
 			if err != nil {
-				log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)
+				//log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)
 				continue
 			}
 
 			_, err = netip.ParseAddr(host)
 			if err == nil {
-				log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)
+				//log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)
 				continue
 			}
 
diff --git a/rule/logic/common.go b/rule/logic/common.go
@@ -102,7 +102,8 @@ func parseRule(tp, payload string, params []string) (C.Rule, error) {
 	case "PROCESS-PATH":
 		parsed, parseErr = RC.NewProcess(payload, "", false)
 	case "RULE-SET":
-		parsed, parseErr = provider.NewRuleSet(payload, "")
+		noResolve := RC.HasNoResolve(params)
+		parsed, parseErr = provider.NewRuleSet(payload, "", noResolve)
 	case "NOT":
 		parsed, parseErr = NewNOT(payload, "")
 	case "AND":
diff --git a/rule/parser.go b/rule/parser.go
@@ -50,7 +50,8 @@ func ParseRule(tp, payload, target string, params []string) (C.Rule, error) {
 	case "NOT":
 		parsed, parseErr = logic.NewNOT(payload, target)
 	case "RULE-SET":
-		parsed, parseErr = RP.NewRuleSet(payload, target)
+		noResolve := RC.HasNoResolve(params)
+		parsed, parseErr = RP.NewRuleSet(payload, target, noResolve)
 	case "MATCH":
 		parsed = RC.NewMatch(target)
 	default:
diff --git a/rule/provider/classical_strategy.go b/rule/provider/classical_strategy.go
@@ -30,26 +30,20 @@ func (c *classicalStrategy) ShouldResolveIP() bool {
 }
 
 func (c *classicalStrategy) OnUpdate(rules []string) {
-	var classicalRules []C.Rule
-	shouldResolveIP := false
-	count := 0
 	for _, rawRule := range rules {
 		ruleType, rule, params := ruleParse(rawRule)
 		r, err := parseRule(ruleType, rule, "", params)
 		if err != nil {
 			log.Warnln("parse rule error:[%s]", err.Error())
 		} else {
-			if !shouldResolveIP {
-				shouldResolveIP = shouldResolveIP || r.ShouldResolveIP()
+			if !c.shouldResolveIP {
+				c.shouldResolveIP = r.ShouldResolveIP()
 			}
 
-			classicalRules = append(classicalRules, r)
-			count++
+			c.rules = append(c.rules, r)
+			c.count++
 		}
 	}
-
-	c.rules = classicalRules
-	c.count = count
 }
 
 func NewClassicalStrategy() *classicalStrategy {
diff --git a/rule/provider/domain_strategy.go b/rule/provider/domain_strategy.go
@@ -8,9 +8,8 @@ import (
 )
 
 type domainStrategy struct {
-	shouldResolveIP bool
-	count           int
-	domainRules     *trie.DomainTrie[bool]
+	count       int
+	domainRules *trie.DomainTrie[bool]
 }
 
 func (d *domainStrategy) Match(metadata *C.Metadata) bool {
@@ -22,7 +21,7 @@ func (d *domainStrategy) Count() int {
 }
 
 func (d *domainStrategy) ShouldResolveIP() bool {
-	return d.shouldResolveIP
+	return false
 }
 
 func (d *domainStrategy) OnUpdate(rules []string) {
@@ -55,5 +54,5 @@ func ruleParse(ruleRaw string) (string, string, []string) {
 }
 
 func NewDomainStrategy() *domainStrategy {
-	return &domainStrategy{shouldResolveIP: false}
+	return &domainStrategy{}
 }
diff --git a/rule/provider/rule_set.go b/rule/provider/rule_set.go
@@ -12,6 +12,7 @@ type RuleSet struct {
 	ruleProviderName string
 	adapter          string
 	ruleProvider     P.RuleProvider
+	noResolveIP      bool
 }
 
 func (rs *RuleSet) ShouldFindProcess() bool {
@@ -35,7 +36,7 @@ func (rs *RuleSet) Payload() string {
 }
 
 func (rs *RuleSet) ShouldResolveIP() bool {
-	return rs.getProviders().ShouldResolveIP()
+	return !rs.noResolveIP && rs.getProviders().ShouldResolveIP()
 }
 func (rs *RuleSet) getProviders() P.RuleProvider {
 	if rs.ruleProvider == nil {
@@ -46,7 +47,7 @@ func (rs *RuleSet) getProviders() P.RuleProvider {
 	return rs.ruleProvider
 }
 
-func NewRuleSet(ruleProviderName string, adapter string) (*RuleSet, error) {
+func NewRuleSet(ruleProviderName string, adapter string, noResolveIP bool) (*RuleSet, error) {
 	rp, ok := RuleProviders()[ruleProviderName]
 	if !ok {
 		return nil, fmt.Errorf("rule set %s not found", ruleProviderName)
@@ -56,5 +57,6 @@ func NewRuleSet(ruleProviderName string, adapter string) (*RuleSet, error) {
 		ruleProviderName: ruleProviderName,
 		adapter:          adapter,
 		ruleProvider:     rp,
+		noResolveIP:      noResolveIP,
 	}, nil
 }

Original file line number	Diff line number	Diff line change
`@@ -117,13 +117,13 @@ func (sd SnifferDispatcher) sniffDomain(conn CN.BufferedConn, metadata *C.Meta`
`117`	`117`
`118`	`118`	`host, err := sniffer.SniffTCP(bytes)`
`119`	`119`	`if err != nil {`
`120`		`- log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)`
	`120`	`+ //log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)`
`121`	`121`	`continue`
`122`	`122`	`}`
`123`	`123`
`124`	`124`	`_, err = netip.ParseAddr(host)`
`125`	`125`	`if err == nil {`
`126`		`- log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)`
	`126`	`+ //log.Debugln("[Sniffer] [%s] Sniff data failed %s", sniffer.Protocol(), metadata.DstIP)`
`127`	`127`	`continue`
`128`	`128`	`}`
`129`	`129`
Original file line number	Diff line number	Diff line change
`@@ -30,26 +30,20 @@ func (c *classicalStrategy) ShouldResolveIP() bool {`
`30`	`30`	`}`
`31`	`31`
`32`	`32`	`func (c *classicalStrategy) OnUpdate(rules []string) {`
`33`		`- var classicalRules []C.Rule`
`34`		`- shouldResolveIP := false`
`35`		`- count := 0`
`36`	`33`	`for _, rawRule := range rules {`
`37`	`34`	`ruleType, rule, params := ruleParse(rawRule)`
`38`	`35`	`r, err := parseRule(ruleType, rule, "", params)`
`39`	`36`	`if err != nil {`
`40`	`37`	`log.Warnln("parse rule error:[%s]", err.Error())`
`41`	`38`	`} else {`
`42`		`- if !shouldResolveIP {`
`43`		`- shouldResolveIP = shouldResolveIP \|\| r.ShouldResolveIP()`
	`39`	`+ if !c.shouldResolveIP {`
	`40`	`+ c.shouldResolveIP = r.ShouldResolveIP()`
`44`	`41`	`}`
`45`	`42`
`46`		`- classicalRules = append(classicalRules, r)`
`47`		`- count++`
	`43`	`+ c.rules = append(c.rules, r)`
	`44`	`+ c.count++`
`48`	`45`	`}`
`49`	`46`	`}`
`50`		`-`
`51`		`- c.rules = classicalRules`
`52`		`- c.count = count`
`53`	`47`	`}`
`54`	`48`
`55`	`49`	`func NewClassicalStrategy() *classicalStrategy {`
Original file line number	Diff line number	Diff line change
`@@ -8,9 +8,8 @@ import (`
`8`	`8`	`)`
`9`	`9`
`10`	`10`	`type domainStrategy struct {`
`11`		`- shouldResolveIP bool`
`12`		`- count int`
`13`		`- domainRules *trie.DomainTrie[bool]`
	`11`	`+ count int`
	`12`	`+ domainRules *trie.DomainTrie[bool]`
`14`	`13`	`}`
`15`	`14`
`16`	`15`	`func (d domainStrategy) Match(metadata C.Metadata) bool {`
`@@ -22,7 +21,7 @@ func (d *domainStrategy) Count() int {`
`22`	`21`	`}`
`23`	`22`
`24`	`23`	`func (d *domainStrategy) ShouldResolveIP() bool {`
`25`		`- return d.shouldResolveIP`
	`24`	`+ return false`
`26`	`25`	`}`
`27`	`26`
`28`	`27`	`func (d *domainStrategy) OnUpdate(rules []string) {`
`@@ -55,5 +54,5 @@ func ruleParse(ruleRaw string) (string, string, []string) {`
`55`	`54`	`}`
`56`	`55`
`57`	`56`	`func NewDomainStrategy() *domainStrategy {`
`58`		`- return &domainStrategy{shouldResolveIP: false}`
	`57`	`+ return &domainStrategy{}`
`59`	`58`	`}`
Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,7 @@ type RuleSet struct {`
`12`	`12`	`ruleProviderName string`
`13`	`13`	`adapter string`
`14`	`14`	`ruleProvider P.RuleProvider`
	`15`	`+ noResolveIP bool`
`15`	`16`	`}`
`16`	`17`
`17`	`18`	`func (rs *RuleSet) ShouldFindProcess() bool {`
`@@ -35,7 +36,7 @@ func (rs *RuleSet) Payload() string {`
`35`	`36`	`}`
`36`	`37`
`37`	`38`	`func (rs *RuleSet) ShouldResolveIP() bool {`
`38`		`- return rs.getProviders().ShouldResolveIP()`
	`39`	`+ return !rs.noResolveIP && rs.getProviders().ShouldResolveIP()`
`39`	`40`	`}`
`40`	`41`	`func (rs *RuleSet) getProviders() P.RuleProvider {`
`41`	`42`	`if rs.ruleProvider == nil {`
`@@ -46,7 +47,7 @@ func (rs *RuleSet) getProviders() P.RuleProvider {`
`46`	`47`	`return rs.ruleProvider`
`47`	`48`	`}`
`48`	`49`
`49`		`-func NewRuleSet(ruleProviderName string, adapter string) (*RuleSet, error) {`
	`50`	`+func NewRuleSet(ruleProviderName string, adapter string, noResolveIP bool) (*RuleSet, error) {`
`50`	`51`	`rp, ok := RuleProviders()[ruleProviderName]`
`51`	`52`	`if !ok {`
`52`	`53`	`return nil, fmt.Errorf("rule set %s not found", ruleProviderName)`
`@@ -56,5 +57,6 @@ func NewRuleSet(ruleProviderName string, adapter string) (*RuleSet, error) {`
`56`	`57`	`ruleProviderName: ruleProviderName,`
`57`	`58`	`adapter: adapter,`
`58`	`59`	`ruleProvider: rp,`
	`60`	`+ noResolveIP: noResolveIP,`
`59`	`61`	`}, nil`
`60`	`62`	`}`